Lucene search
K

146 matches found

NVD
NVD
added 2023/10/12 4:15 p.m.27 views

CVE-2023-32634

An authentication bypass vulnerability exists in the CiRpcServerThread functionality of SoftEther VPN 5.01.9674 and 4.41-9782-beta. An attacker can perform a local man-in-the-middle attack to trigger this vulnerability...

7.8CVSS7.6AI score0.00426EPSS
Exploits1References3
OSV
OSV
added 2023/10/12 4:15 p.m.6 views

CVE-2023-32275

An information disclosure vulnerability exists in the CtEnumCa functionality of SoftEther VPN 4.41-9782-beta and 5.01.9674. Specially crafted network packets can lead to a disclosure of sensitive information. An attacker can send packets to trigger this vulnerability...

4.4CVSS7.3AI score0.00392EPSS
Exploits1References3
NVD
NVD
added 2023/10/12 4:15 p.m.15 views

CVE-2023-27516

An authentication bypass vulnerability exists in the CiRpcAccepted functionality of SoftEther VPN 4.41-9782-beta and 5.01.9674. A specially crafted network packet can lead to unauthorized access. An attacker can send a network request to trigger this vulnerability...

7.8CVSS7.3AI score0.0053EPSS
Exploits1References3
OSV
OSV
added 2023/10/12 4:15 p.m.5 views

CVE-2023-27395

A heap-based buffer overflow vulnerability exists in the vpnserver WpcParsePacket functionality of SoftEther VPN 4.41-9782-beta, 5.01.9674 and 5.02. A specially crafted network packet can lead to arbitrary code execution. An attacker can perform a man-in-the-middle attack to trigger this...

8.1CVSS7.7AI score0.01543EPSS
Exploits1References3
OSV
OSV
added 2023/10/12 4:15 p.m.5 views

CVE-2023-31192

An information disclosure vulnerability exists in the ClientConnect functionality of SoftEther VPN 5.01.9674. A specially crafted network packet can lead to a disclosure of sensitive information. An attacker can perform a man-in-the-middle attack to trigger this vulnerability...

5.3CVSS7.3AI score0.00976EPSS
Exploits1References3
OSV
OSV
added 2023/10/12 4:15 p.m.5 views

CVE-2023-27516

An authentication bypass vulnerability exists in the CiRpcAccepted functionality of SoftEther VPN 4.41-9782-beta and 5.01.9674. A specially crafted network packet can lead to unauthorized access. An attacker can send a network request to trigger this vulnerability...

7.8CVSS7.1AI score0.0053EPSS
Exploits1References3
NVD
NVD
added 2023/10/12 4:15 p.m.44 views

CVE-2023-25774

A denial-of-service vulnerability exists in the vpnserver ConnectionAccept functionality of SoftEther VPN 5.02. A set of specially crafted network connections can lead to denial of service. An attacker can send a sequence of malicious packets to trigger this vulnerability...

7.5CVSS7.3AI score0.00728EPSS
Exploits1References2
NVD
NVD
added 2023/10/12 4:15 p.m.23 views

CVE-2023-23581

A denial-of-service vulnerability exists in the vpnserver EnSafeHttpHeaderValueStr functionality of SoftEther VPN 5.01.9674 and 5.02. A specially crafted network packet can lead to denial of service...

7.5CVSS7.4AI score0.00834EPSS
Exploits1References2
OSV
OSV
added 2023/10/12 4:15 p.m.6 views

CVE-2023-23581

A denial-of-service vulnerability exists in the vpnserver EnSafeHttpHeaderValueStr functionality of SoftEther VPN 5.01.9674 and 5.02. A specially crafted network packet can lead to denial of service...

7.5CVSS7.3AI score0.00834EPSS
Exploits1References2
NVD
NVD
added 2023/10/12 4:15 p.m.17 views

CVE-2023-22325

A denial of service vulnerability exists in the DCRegister DDNSRPCMAXRECVSIZE functionality of SoftEther VPN 4.41-9782-beta, 5.01.9674 and 5.02. A specially crafted network packet can lead to denial of service. An attacker can perform a man-in-the-middle attack to trigger this vulnerability...

5.9CVSS5.5AI score0.00957EPSS
Exploits1References3
OSV
OSV
added 2023/10/12 4:15 p.m.5 views

CVE-2023-22325

A denial of service vulnerability exists in the DCRegister DDNSRPCMAXRECVSIZE functionality of SoftEther VPN 4.41-9782-beta, 5.01.9674 and 5.02. A specially crafted network packet can lead to denial of service. An attacker can perform a man-in-the-middle attack to trigger this vulnerability...

5.9CVSS5.8AI score0.00957EPSS
Exploits1References3
NVD
NVD
added 2023/10/12 4:15 p.m.29 views

CVE-2023-22308

An integer underflow vulnerability exists in the vpnserver OvsProcessData functionality of SoftEther VPN 5.01.9674 and 5.02. A specially crafted network packet can lead to denial of service. An attacker can send a malicious packet to trigger this vulnerability...

7.5CVSS7.3AI score0.00728EPSS
Exploits1References2
OSV
OSV
added 2023/10/12 4:15 p.m.4 views

CVE-2023-22308

An integer underflow vulnerability exists in the vpnserver OvsProcessData functionality of SoftEther VPN 5.01.9674 and 5.02. A specially crafted network packet can lead to denial of service. An attacker can send a malicious packet to trigger this vulnerability...

7.5CVSS7.1AI score0.00728EPSS
Exploits1References2
Prion
Prion
added 2023/10/12 4:15 p.m.20 views

Integer overflow

An integer underflow vulnerability exists in the vpnserver OvsProcessData functionality of SoftEther VPN 5.01.9674 and 5.02. A specially crafted network packet can lead to denial of service. An attacker can send a malicious packet to trigger this vulnerability...

5CVSS7.4AI score0.00728EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2023/10/12 4:15 p.m.24 views

Denial of service

A denial-of-service vulnerability exists in the vpnserver ConnectionAccept functionality of SoftEther VPN 5.02. A set of specially crafted network connections can lead to denial of service. An attacker can send a sequence of malicious packets to trigger this vulnerability...

5CVSS7.4AI score0.00728EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2023/10/12 4:15 p.m.21 views

Denial of service

A denial-of-service vulnerability exists in the vpnserver EnSafeHttpHeaderValueStr functionality of SoftEther VPN 5.01.9674 and 5.02. A specially crafted network packet can lead to denial of service...

5CVSS7.4AI score0.00834EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2023/10/12 4:15 p.m.18 views

Information disclosure

An information disclosure vulnerability exists in the CtEnumCa functionality of SoftEther VPN 4.41-9782-beta and 5.01.9674. Specially crafted network packets can lead to a disclosure of sensitive information. An attacker can send packets to trigger this vulnerability...

1.4CVSS5.6AI score0.00392EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2023/10/12 4:15 p.m.15 views

Authentication flaw

An authentication bypass vulnerability exists in the CiRpcAccepted functionality of SoftEther VPN 4.41-9782-beta and 5.01.9674. A specially crafted network packet can lead to unauthorized access. An attacker can send a network request to trigger this vulnerability...

4.3CVSS7.8AI score0.0053EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2023/10/12 4:15 p.m.26 views

Authentication flaw

An authentication bypass vulnerability exists in the CiRpcServerThread functionality of SoftEther VPN 5.01.9674 and 4.41-9782-beta. An attacker can perform a local man-in-the-middle attack to trigger this vulnerability...

3.7CVSS7.6AI score0.00426EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2023/10/12 4:15 p.m.17 views

Information disclosure

An information disclosure vulnerability exists in the ClientConnect functionality of SoftEther VPN 5.01.9674. A specially crafted network packet can lead to a disclosure of sensitive information. An attacker can perform a man-in-the-middle attack to trigger this vulnerability...

2.1CVSS5.9AI score0.00976EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder