Lucene search

K
cvelistRedhatCVELIST:CVE-2017-7479
HistoryMay 15, 2017 - 6:00 p.m.

CVE-2017-7479

2017-05-1518:00:00
CWE-617
redhat
www.cve.org

6.8 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.1%

OpenVPN versions before 2.3.15 and before 2.4.2 are vulnerable to reachable assertion when packet-ID counter rolls over resulting into Denial of Service of server by authenticated attacker.

CNA Affected

[
  {
    "product": "openvpn",
    "vendor": "OpenVPN Technologies, Inc",
    "versions": [
      {
        "status": "affected",
        "version": "< 2.3.15"
      },
      {
        "status": "affected",
        "version": "< 2.4.2"
      }
    ]
  }
]