CVE-2024-39799

CVE-2024-39799 (and related CVEs 39798, 39800) affect WAVLINK AC3000 M33A8.V5030.210505 via openvpn.cgi openvpn_server_setup, allowing authentication-protected HTTP POST data to inject arbitrary config into the OpenVPN server. The vulnerability chain reads POST values (sel_open_server_val, sel_op...

CVE-2024-39798

CVE-2024-39798 affects WAVLINK AC3000 (openvpn.cgi openvpn_server_setup). Talos & Red Hat/others describe multiple external config control vulnerabilities in the openvpn_server_setup() path, where POST parameters such as sel_open_server_val, sel_open_protocol, sel_open_interface, open_port, and r...

CVE-2024-38666

An external config control vulnerability exists in the openvpn.cgi openvpnclientsetup functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability...

WAVLINK AC3000 安全漏洞

WAVLINK AC3000 is a wireless router from China Ruiyin WAVLINK. The WAVLINK AC3000 suffers from an external configuration control vulnerability that stems from the openvpn.cgi openvpnclientsetup function failing to properly filter construct command special characters, commands, etc. The...

WAVLINK AC3000 安全漏洞

WAVLINK AC3000 is a wireless router from China Ruiyin WAVLINK. The WAVLINK AC3000 suffers from an external configuration control vulnerability that originates from the openvpn.cgi openvpnserversetup function's openport parameter failing to correctly filter constructed command special characters,...

PT-2025-2516 · Wavlink +1 · Wavlink Ac3000 +1

Name of the Vulnerable Software and Affected Versions: Wavlink AC3000 version M33A8.V5030.210505 Description: A vulnerability exists in the openvpn client setup function of the openvpn.cgi functionality, allowing for arbitrary command execution through a specially crafted HTTP request. An attacke...

The vulnerability of the OpenVPN Connect software lies in the improper deletion of critical data at the boundary; this allows a hacker to increase their privileges.

The vulnerability of the OpenVPN Connect software is related to improper cross-border deletion of critical data. Exploiting this vulnerability can allow a remote attacker to increase their privileges...

PT-2025-3699 · Undefined · Undefined

🔗 DarkWebInformer.com - Cyber Threat Intelligence 📌 CVE ID: GHSA-qcg2-98h8-485j 🔗 Aliases: CVE-2024-8474 🔹 Details: OpenVPN Connect before version 3.5.0 can contain the configuration profile's clear-text private key which is logged in the application log, which an unauthorized actor can use to...

SUSE CVE-2024-5594

OpenVPN before 2.6.11 does not santize PUSHREPLY messages properly which an attacker controlling the server can use to inject unexpected arbitrary data ending up in client logs...

CVE-2024-8474

OpenVPN Connect before version 3.5.0 can contain the configuration profile's clear-text private key which is logged in the application log, which an unauthorized actor can use to decrypt the VPN traffic...

CVE-2024-8474

OpenVPN Connect before version 3.5.0 can contain the configuration profile's clear-text private key which is logged in the application log, which an unauthorized actor can use to decrypt the VPN traffic...

CVE-2024-8474

OpenVPN Connect before version 3.5.0 can contain the configuration profile's clear-text private key which is logged in the application log, which an unauthorized actor can use to decrypt the VPN traffic...

CVE-2024-8474

OpenVPN Connect before version 3.5.0 can contain the configuration profile's clear-text private key which is logged in the application log, which an unauthorized actor can use to decrypt the VPN traffic...

CVE-2024-8474

OpenVPN Connect affected: all supported builds prior to 3.5.0. Root cause: configuration profile’s clear-text private key is being logged in the application logs, enabling an unauthorized actor to use the key to decrypt VPN traffic. Impact: exposure of private keys could compromise confidentialit...

CVE-2024-5594

OpenVPN before 2.6.11 does not santize PUSHREPLY messages properly which an attacker controlling the server can use to inject unexpected arbitrary data ending up in client logs...

CVE-2024-5594

OpenVPN before 2.6.11 does not santize PUSHREPLY messages properly which an attacker controlling the server can use to inject unexpected arbitrary data ending up in client logs...

ALPINE-CVE-2024-5594

OpenVPN before 2.6.11 does not santize PUSHREPLY messages properly which an attacker controlling the server can use to inject unexpected arbitrary data ending up in client logs...

DEBIAN-CVE-2024-5594

OpenVPN before 2.6.11 does not santize PUSHREPLY messages properly which an attacker controlling the server can use to inject unexpected arbitrary data ending up in client logs...

CVE-2024-5594

OpenVPN before 2.6.11 does not santize PUSHREPLY messages properly which an attacker controlling the server can use to inject unexpected arbitrary data ending up in client logs...

CVE-2024-5594

OpenVPN before 2.6.11 does not santize PUSHREPLY messages properly which an attacker controlling the server can use to inject unexpected arbitrary data ending up in client logs...