CVE-2023-22308

An integer underflow vulnerability exists in the vpnserver OvsProcessData functionality of SoftEther VPN 5.01.9674 and 5.02. A specially crafted network packet can lead to denial of service. An attacker can send a malicious packet to trigger this vulnerability...

CVE-2023-32634

An authentication bypass vulnerability exists in the CiRpcServerThread functionality of SoftEther VPN 5.01.9674 and 4.41-9782-beta. An attacker can perform a local man-in-the-middle attack to trigger this vulnerability...

SoftEther VPN Information Disclosure Vulnerability

SoftEther VPN is an open source, cross-platform, multi-protocol VPN Virtual Private Network application. An information disclosure vulnerability exists in SoftEther VPN versions 4.41-9782-beta and 5.01.9674, which stems from an information disclosure vulnerability in the CtEnumCa function, which...

SoftEther VPN Security Vulnerability

SoftEther VPN is an open source, cross-platform, multi-protocol VPN Virtual Private Network application. A security vulnerability exists in SoftEther VPN versions 4.41-9782-beta and 5.01.9674, which stems from an authentication bypass vulnerability in the CiRpcAccepted function, which can be...

SoftEther VPN Buffer Error Vulnerability

SoftEther VPN is an open source, cross-platform, multi-protocol VPN Virtual Private Network application. A security vulnerability exists in SoftEther VPN versions 4.41-9782-beta, 5.01.9674, and 5.02, which stems from a denial-of-service vulnerability in the WpcParsePacket function, which can be...