Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistOpenVPNCVELIST:CVE-2020-15074
HistoryJul 14, 2020 - 5:27 p.m.

CVE-2020-15074

2020-07-1417:27:31
CWE-302
OpenVPN
www.cve.org

AI Score

7.8

Confidence

High

EPSS

0.001

Percentile

35.9%

JSON

OpenVPN Access Server older than version 2.8.4 and version 2.9.5 generates new user authentication tokens instead of reusing exiting tokens on reconnect making it possible to circumvent the initial token expiry timestamp.

CNA Affected

[
  {
    "product": "OpenVPN Access Server",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "2.8.3 and prior versions in addition to 2.9.5"
      }
    ]
  }
]

Related

prion 1
nvd 1
cve 1
ubuntucve 1
rosalinux 1
prion
prion
Authentication flaw
2020-07-14 18:15:00
nvd
nvd
CVE-2020-15074
2020-07-14 18:15:14
cve
cve
CVE-2020-15074
2020-07-14 18:15:14
ubuntucve
ubuntucve
CVE-2020-15074
2020-07-14 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1940
2021-07-02 17:39:00

AI Score

7.8

Confidence

High

EPSS

0.001

Percentile

35.9%

JSON
Related for CVELIST:CVE-2020-15074
prion1nvd1cve1ubuntucve1rosalinux1