CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

129 matches found

Cvelist•added 2026/05/27 12:17 p.m.•34 views

CVE-2026-45918 ovpn: tcp - don't deref NULL sk_socket member after tcp_close()

In the Linux kernel, the following vulnerability has been resolved: ovpn: tcp - don't deref NULL sksocket member after tcpclose When deleting a peer in case of keepalive expiration, the peer is removed from the OpenVPN hashtable and is temporary inserted in a "release list" for further processing...

0.00022EPSS

Exploits0References3

Tenable Nessus•added 2026/05/09 12:0 a.m.•4 views

Unity Linux 20.1070e Security Update: openvpn (UTSA-2026-017373)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017373 advisory. OpenVPN 2.1 until v2.4.12 and v2.5.6 may enable authentication bypass in external authentication plug-ins when more than one of them makes use of deferred...

9.8CVSS5.8AI score0.00465EPSS

Exploits0References4

Positive Technologies•added 2026/04/08 12:0 a.m.•4 views

PT-2026-31409

Name of the Vulnerable Software and Affected Versions TP-Link AX53 versions prior to 1.7.1 Build 20260213 Description A configuration issue in the OpenVPN module allows a nearby attacker with access to read arbitrary files when a malicious configuration file is processed. Successful exploitation...

6.8CVSS5.9AI score0.0003EPSS

Exploits0References8

Tenable Nessus•added 2026/02/04 12:0 a.m.•2 views

SUSE SLES16 Security Update : openvpn (SUSE-SU-2026:20196-1)

The remote SUSE Linux SLES16 / SLESSAP16 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:20196-1 advisory. - CVE-2025-13086: Fixed improper validation of source IP addresses in OpenVPN that could lead to DoS bsc1254486. Tenable has extracted the...

8.2CVSS7.3AI score0.00052EPSS

Exploits0References4

Chainguard•added 2026/01/14 7:17 p.m.•2 views

GHSA-74JR-8VHJ-2C3F vulnerabilities

Vulnerabilities for packages: openvpn...

7AI score

Exploits0

Redos•added 2025/12/26 12:0 a.m.•3 views

ROS-20251226-7304

Vulnerability in openvpn due to failure to take measures to protect the structure of a web page. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

6.4CVSS7.5AI score0.00038EPSS

Exploits0

Tenable Nessus•added 2025/12/09 12:0 a.m.•3 views

Amazon Linux 2023 : openvpn, openvpn-devel (ALAS2023-2025-1312)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1312 advisory. HMAC verification check: fix incorrect memcmp call NOTE: https://community.openvpn.net/Security%20Announcements/CVE-2025-13086 CVE-2025-13086 Tenable has extracted the preceding description block...

8.2CVSS7.3AI score0.00052EPSS

Exploits0References4

CNNVD•added 2025/12/03 12:0 a.m.•1 views

OpenVPN 安全漏洞

OpenVPN is a software package for creating encrypted tunnels for virtual private networks VPNs from US-based OpenVPN, which uses the OpenSSL library to encrypt data and control information and allows the created VPN to be authenticated using a public key, an electronic certificate, or a...

8.2CVSS7.7AI score0.00052EPSS

Exploits0References4

Tenable Nessus•added 2025/12/03 12:0 a.m.•6 views

Ubuntu 24.04 LTS / 25.04 / 25.10 : OpenVPN vulnerability (USN-7898-1)

The remote Ubuntu 24.04 LTS / 25.04 / 25.10 host has a package installed that is affected by a vulnerability as referenced in the USN-7898-1 advisory. Joshua Rogers discovered that OpenVPN incorrectly handled HMAC verification checks. A remote attacker could possibly use this issue to bypass sour...

8.2CVSS7.3AI score0.00052EPSS

Exploits0References2