Lucene search
+L

20 matches found

nessus
nessus
added 2025/06/16 12:0 a.m.3 views

TencentOS Server 4: openvpn (TSSA-2025:0091)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0091 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

9.1CVSS7.6AI score0.09759EPSS
Exploits0References5
openvas
openvas
added 2025/06/04 12:0 a.m.5 views

SUSE: Security Advisory (SUSE-SU-2024:3502-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS4.7AI score0.00665EPSS
Exploits0References4
nessus
nessus
added 2025/03/05 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2024-28882

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenVPN from 2.6.0 through 2.6.10 in a server role accepts multiple exit notifications from authenticated clients which will extend the validity of a closing...

4.3CVSS6.1AI score0.00665EPSS
Exploits0References1
nessus
nessus
added 2024/11/18 12:0 a.m.18 views

Siemens SCALANCE M-800 Missing Release of Resource after Effective Lifetime (CVE-2024-28882)

OpenVPN from 2.6.0 through 2.6.10 in a server role accepts multiple exit notifications from authenticated clients which will extend the validity of a closing session This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVE...

4.3CVSS6.1AI score0.00665EPSS
Exploits0References4
opensuse
opensuse
added 2024/10/31 12:0 a.m.4 views

openvpn-2.6.10-2.1 on GA media (moderate)

openvpn-2.6.10-2.1 on GA media Announcement ID: openSUSE-SU-2024:14436-1 Rating: moderate Cross-References: CVE-2024-28882 CVSS scores: CVE-2024-28882 SUSE : 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be...

4.3CVSS9.3AI score0.00665EPSS
Exploits0
openvas
openvas
added 2024/10/07 12:0 a.m.13 views

SUSE: Security Advisory (SUSE-SU-2024:3532-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS4.7AI score0.00665EPSS
Exploits0References4
nessus
nessus
added 2024/10/05 12:0 a.m.23 views

SUSE SLES12 Security Update : openvpn (SUSE-SU-2024:3532-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:3532-1 advisory. - CVE-2024-28882: Fix multiple exit notifications from authenticated clients will extend the validity of a closing session bsc1227546 Tenabl...

4.3CVSS6.2AI score0.00665EPSS
Exploits0References4
osv
osv
added 2024/10/04 2:29 p.m.14 views

SUSE-SU-2024:3532-1 Security update for openvpn

This update for openvpn fixes the following issues: - CVE-2024-28882: Fix multiple exit notifications from authenticated clients will extend the validity of a closing session bsc1227546...

4.3CVSS4.7AI score0.00665EPSS
Exploits0References3
nessus
nessus
added 2024/10/04 12:0 a.m.17 views

OpenVPN Server versions 2.6.0 <= 2.6.10 Session Extension Vulnerability

OpenVPN from 2.6.0 through 2.6.10 in a server role accepts multiple exit notifications from authenticated clients which will extend the validity of a closing session %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid208125; scriptversion"1.3";...

9.3CVSS6.1AI score0.00665EPSS
Exploits0References2
openvas
openvas
added 2024/10/04 12:0 a.m.16 views

openSUSE Security Advisory (SUSE-SU-2024:3502-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS4.7AI score0.00665EPSS
Exploits0References4
nessus
nessus
added 2024/10/02 12:0 a.m.18 views

SUSE SLED15: openvpn / openvpn-auth-pam-plugin / openvpn-devel / etc (SUSE-SU-2024:3502-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:3502-1 advisory. - CVE-2024-28882: Fix multiple exit notifications from authenticated clients will extend the validity of ...

4.3CVSS6.3AI score0.00665EPSS
Exploits0References4
suse
suse
added 2024/10/01 2:3 p.m.4 views

Security update for openvpn

This update for openvpn fixes the following issues: CVE-2024-28882: Fix multiple exit notifications from authenticated clients will extend the validity of a closing session bsc1227546 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

4.3CVSS5AI score0.00665EPSS
Exploits0References4
osv
osv
added 2024/07/12 11:8 a.m.4 views

OESA-2024-1840 openvpn security update

OpenVPN is a full-featured open source SSL VPN solution that accommodates a wide range of configurations, including remote access, site-to-site VPNs, Wi-Fi security, and enterprise-scale remote access solutions with load balancing, failover, and fine-grained access-controls. Starting with the...

4.3CVSS6.8AI score0.00665EPSS
Exploits0References2
cve
cve
added 2024/07/08 9:30 p.m.96 views

CVE-2024-28882

OpenVPN OpenVPN 2.6.0–2.6.10 (server role) accepts multiple exit notifications from authenticated clients, which extends the validity of a closing session. This CVE description is consistently echoed across sources (OpenVPN-related advisories in Astra Linux and Alpine Linux pages, Debian security...

4.3CVSS6.2AI score0.00665EPSS
Exploits0References2Affected Software1
alpinelinux
alpinelinux
added 2024/07/08 9:30 p.m.35 views

CVE-2024-28882

OpenVPN from 2.6.0 through 2.6.10 in a server role accepts multiple exit notifications from authenticated clients which will extend the validity of a closing session...

4.3CVSS6.2AI score0.00665EPSS
Exploits0
openvas
openvas
added 2024/07/03 12:0 a.m.28 views

Ubuntu: Security Advisory (USN-6860-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.1AI score0.00819EPSS
Exploits0References2
nessus
nessus
added 2024/06/27 12:0 a.m.39 views

Fedora 40 : openvpn (2024-b611e122fb)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-b611e122fb advisory. Update to upstream OpenVPN 2.6.11 CVE-2024-5594: control channel: refuse control channel messages with nonprintable characters in them CVE-2024-2888...

9.1CVSS6.6AI score0.00819EPSS
Exploits0References3
ubuntucve
ubuntucve
added 2024/06/25 12:0 a.m.26 views

CVE-2024-28882

OpenVPN from 2.6.0 through 2.6.10 in a server role accepts multiple exit notifications from authenticated clients which will extend the validity of a closing session...

4.3CVSS6.6AI score0.00665EPSS
Exploits0References2
nessus
nessus
added 2024/06/21 12:0 a.m.37 views

FreeBSD : openvpn -- two security fixes (142c538e-b18f-40a1-afac-c479effadd5c)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 142c538e-b18f-40a1-afac-c479effadd5c advisory. Gert Doering reports that OpenVPN 2.6.11 fixes two security bugs three on Windows:...

9.1CVSS6.4AI score0.00819EPSS
Exploits0References4
freebsd
freebsd
added 2024/05/16 12:0 a.m.31 views

openvpn -- two security fixes

Gert Doering reports that OpenVPN 2.6.11 fixes two security bugs three on Windows: CVE-2024-5594: control channel: refuse control channel messages with nonprintable characters in them. Security scope: a malicious openvpn peer can send garbage to openvpn log, or cause high CPU load. Reynir Björnss...

9.1CVSS6.8AI score0.00819EPSS
Exploits0References1
Rows per page
Query Builder