SUSE SLES11 Security Update : openvpn-openssl1 (SUSE-SU-2022:14937-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2022:14937-1 advisory. - CVE-2022-0547: Fixed possible authentication bypass in external authentication plug-in bsc1197341. Tenable has extracted the preceding description...

SUSE: Security Advisory (SUSE-SU-2022:14937-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2022:14937-1 Security update for openvpn-openssl1

This update for openvpn-openssl1 fixes the following issues: - CVE-2022-0547: Fixed possible authentication bypass in external authentication plug-in bsc1197341...

CLSA-2022-1649172186 Update of openvpn-devel, openvpn

Rebuilt for tuxcare.els...

CLSA-2022-1649172110 Update of openvpn-devel, openvpn

Rebuilt for tuxcare.els...

CLSA-2022-1649170882 Fixed CVE-2022-0547 in openvpn

CVE-2022-0547: Fix authentication bypass via multiple deferred authentication plug-ins...

CLSA-2022-1649170601 Fix CVE(s): CVE-2022-0547

SECURITY UPDATE: authentication bypass via multiple deferred authentication plug-ins - debian/patches/CVE-2022-0547.patch: disallow multiple deferred authentication plug-ins in doc/openvpn.8, src/openvpn/plugin.c. - CVE-2022-0547...

CVE-2022-24299

Improper input validation vulnerability in pfSense CE and pfSense Plus pfSense CE software versions prior to 2.6.0 and pfSense Plus software versions prior to 22.01 allows a remote attacker with the privilege to change OpenVPN client or server settings to execute an arbitrary command...

CVE-2022-24299

Improper input validation vulnerability in pfSense CE and pfSense Plus pfSense CE software versions prior to 2.6.0 and pfSense Plus software versions prior to 22.01 allows a remote attacker with the privilege to change OpenVPN client or server settings to execute an arbitrary command...

CVE-2022-24299

Improper input validation vulnerability in pfSense CE and pfSense Plus pfSense CE software versions prior to 2.6.0 and pfSense Plus software versions prior to 22.01 allows a remote attacker with the privilege to change OpenVPN client or server settings to execute an arbitrary command...

CVE-2022-24299

The CVE-2022-24299 issue affects pfSense CE (versions prior to 2.6.0) and pfSense Plus (prior to 22.01); it is an Improper Input Validation vulnerability that lets a privileged attacker who can modify OpenVPN client/server settings execute arbitrary commands. This is documented across multiple so...

The vulnerability of OpenVPN software lies in its authentication procedures’ flaws, which allow attackers to bypass the authentication process and gain access to confidential information.

The vulnerability of OpenVPN software is related to deficiencies in authentication procedures. Exploiting this vulnerability allows a malicious actor to bypass the authentication process and gain access to confidential information...

Mageia: Security Advisory (MGASA-2022-0123)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MGASA-2022-0123 Updated openvpn packages fix security vulnerability

Potential authentication by-pass with multiple deferred authentication plug-ins. CVE-2022-0547...

Updated openvpn packages fix security vulnerability

Potential authentication by-pass with multiple deferred authentication plug-ins. CVE-2022-0547...

SUSE SLES12 Security Update : openvpn (SUSE-SU-2022:1024-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:1024-1 advisory. - CVE-2022-0547: Fixed possible authentication bypass in external authentication plug-in bsc1197341. Tenable has extracted the preceding...

SUSE SLED15 / SLES15 Security Update : openvpn (SUSE-SU-2022:1029-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:1029-1 advisory. - CVE-2022-0547: Fixed possible authentication bypass in external authentication plug-in bsc1197341. Tenable has...

openSUSE 15 Security Update : openvpn (openSUSE-SU-2022:1029-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2022:1029-1 advisory. - OpenVPN 2.1 until v2.4.12 and v2.5.6 may enable authentication bypass in external authentication plug-ins when more than one of them makes use of...

SUSE: Security Advisory (SUSE-SU-2022:1024-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2022:1029-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...