CVE-2020-11462
CVE-2020-11462 affects OpenVPN Access Server prior to 2.7.0 and 2.8.x prior to 2.8.3. When the full-featured RPC2 interface is enabled, sending an XML Entity Expansion (XEE) payload to the XMLRPC-based RPC2 interface can trigger a temporary DoS on the management interface. The DoS duration depend...