2376 matches found
CVE-2021-27406
An attacker can take leverage on PerFact OpenVPN-Client versions 1.4.1.0 and prior to send the config command from any application running on the local host machine to force the back-end server into initializing a new open-VPN instance with arbitrary open-VPN configuration. This could result in t...
CVE-2021-27406
An attacker can take leverage on PerFact OpenVPN-Client versions 1.4.1.0 and prior to send the config command from any application running on the local host machine to force the back-end server into initializing a new open-VPN instance with arbitrary open-VPN configuration. This could result in t...
Design/Logic Flaw
An attacker can take leverage on PerFact OpenVPN-Client versions 1.4.1.0 and prior to send the config command from any application running on the local host machine to force the back-end server into initializing a new open-VPN instance with arbitrary open-VPN configuration. This could result in t...
CVE-2021-27406 PerFact OpenVPN-Client
An attacker can take leverage on PerFact OpenVPN-Client versions 1.4.1.0 and prior to send the config command from any application running on the local host machine to force the back-end server into initializing a new open-VPN instance with arbitrary open-VPN configuration. This could result in t...
CVE-2021-27406
CVE-2021-27406 affects PerFact OpenVPN-Client, 1.4.1.0 and earlier. The vulnerability allows an attacker, from any local application, to send the VPN config command to the back-end server, forcing it to initialize a new OpenVPN instance with arbitrary configuration. This can lead to code executio...
CVE-2021-27406 PerFact OpenVPN-Client
An attacker can take leverage on PerFact OpenVPN-Client versions 1.4.1.0 and prior to send the config command from any application running on the local host machine to force the back-end server into initializing a new open-VPN instance with arbitrary open-VPN configuration. This could result in t...
Security fix for the ALT Linux 9 package openvpn version 2.5.6-alt1
2.5.6-alt1 built Sept. 28, 2022 Andrey Cherepanov in task 305924 May 16, 2022 Nikolay A. Fetisov - New version Closes: 42217 - Security fixes: + CVE-2022-0547: possible authentication bypass if multiple authentication plugins tries to do deferred authentication - Fix build with new...
Ubuntu: Security Advisory (USN-2430-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-3339-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-612-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Code injection
A vulnerability has been identified in RUGGEDCOM RM1224 LTE4G EU All versions = V2.3 = V2.3 = V2.3 = V2.3 = V2.3 V3.0, SCALANCE SC646-2C All versions V2.3, SCALANCE SC646-2C...
CVE-2022-34821
The CVE-2022-34821 vulnerability affects Siemens RUGGEDCOM RM1224 LTE and various SCALANCE devices. The root cause is code injection by injecting code into specific OpenVPN configuration options, allowing arbitrary code execution with elevated privileges on affected devices. Relevant impacts incl...
CVE-2022-34821
A vulnerability has been identified in RUGGEDCOM RM1224 LTE4G EU 6GK6108-4AM00-2BA2, RUGGEDCOM RM1224 LTE4G NAM 6GK6108-4AM00-2DA2, SCALANCE M804PB 6GK5804-0AP00-2AA2, SCALANCE M812-1 ADSL-Router 6GK5812-1AA00-2AA2, SCALANCE M812-1 ADSL-Router 6GK5812-1BA00-2AA2, SCALANCE M816-1 ADSL-Router...
CVE-2021-4234
OpenVPN Access Server 2.10 and prior versions are susceptible to resending multiple packets in a response to a reset packet sent from the client which the client again does not respond to, resulting in a limited amplification attack...
CVE-2021-4234
OpenVPN Access Server 2.10 and prior versions are susceptible to resending multiple packets in a response to a reset packet sent from the client which the client again does not respond to, resulting in a limited amplification attack...
CVE-2021-4234
OpenVPN Access Server 2.10 and prior versions are susceptible to resending multiple packets in a response to a reset packet sent from the client which the client again does not respond to, resulting in a limited amplification attack...
Design/Logic Flaw
OpenVPN Access Server 2.10 and prior versions are susceptible to resending multiple packets in a response to a reset packet sent from the client which the client again does not respond to, resulting in a limited amplification attack...
CVE-2021-4234
OpenVPN Access Server 2.10 and prior versions are susceptible to resending multiple packets in a response to a reset packet sent from the client which the client again does not respond to, resulting in a limited amplification attack...
CVE-2021-4234
OpenVPN Access Server 2.10 and earlier are affected by a vulnerability where the server resends multiple packets in response to a client-sent reset, which the client does not respond to, enabling a limited amplification attack. The issue is documented in CVE-2021-4234 with a HIGH impact on availa...
CVE-2022-33738
OpenVPN Access Server before 2.11 uses a weak random generator used to create user session token for the web portal...