Lucene search
+L

29 matches found

CVE
CVE
added 2025/03/12 12:0 a.m.69 views

CVE-2025-25566

The CVE-2025-25566 vulnerability affects SoftEtherVPN 5.02.5187 and is caused by a memory leak in the UnixMemoryAlloc function, leading to potential denial of service. Multiple connected sources confirm the affected software/version and the underlying cause; exploitation status and in-the-wild de...

5.6CVSS6.3AI score0.00292EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/03/12 12:0 a.m.12 views

PT-2025-11090 · Softether · Softether Vpn

Name of the Vulnerable Software and Affected Versions: SoftEtherVPN version 5.02.5187 Description: A memory leak issue exists in SoftEtherVPN 5.02.5187. This allows an attacker to potentially cause a denial of service by exploiting the UnixMemoryAlloc function. The supplier disputes the severity,...

5.6CVSS6.2AI score0.00292EPSS
Exploits1References7
Vulnrichment
Vulnrichment
added 2025/03/12 12:0 a.m.15 views

CVE-2025-25566

Memory Leak vulnerability in SoftEtherVPN 5.02.5187 allows an attacker to cause a denial of service via the UnixMemoryAlloc function. NOTE: the Supplier disputes this because the behavior is limited to a single allocation of a few hundred bytes with a command-line tool...

6.3AI score0.00292EPSS
Exploits1References2
NVD
NVD
added 2024/06/26 7:15 p.m.26 views

CVE-2024-38520

SoftEtherVPN is a an open-source cross-platform multi-protocol VPN Program. When SoftEtherVPN is deployed with L2TP enabled on a device, it introduces the possibility of the host being used for amplification/reflection traffic generation because it will respond to every packet with two response...

5.3CVSS0.00514EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/06/26 6:59 p.m.97 views

CVE-2024-38520 SoftEther VPN with L2TP - 2.75x Amplification

SoftEtherVPN is a an open-source cross-platform multi-protocol VPN Program. When SoftEtherVPN is deployed with L2TP enabled on a device, it introduces the possibility of the host being used for amplification/reflection traffic generation because it will respond to every packet with two response...

5.3CVSS0.00514EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/06/26 6:59 p.m.28 views

CVE-2024-38520 SoftEther VPN with L2TP - 2.75x Amplification

SoftEtherVPN is a an open-source cross-platform multi-protocol VPN Program. When SoftEtherVPN is deployed with L2TP enabled on a device, it introduces the possibility of the host being used for amplification/reflection traffic generation because it will respond to every packet with two response...

5.3CVSS6.8AI score0.00514EPSS
Exploits0References3
CVE
CVE
added 2024/06/26 6:59 p.m.53 views

CVE-2024-38520

CVE-2024-38520 affects SoftEtherVPN when L2TP is enabled. The issue allows the host to be used for amplification/reflection traffic because the VPN responds to every packet with two responses larger than the request, enabling spoofed IPs to target a destination. The vulnerability is fixed in vers...

5.3CVSS5.2AI score0.00514EPSS
Exploits0References3
OSV
OSV
added 2024/06/26 6:59 p.m.19 views

CVE-2024-38520 SoftEther VPN with L2TP - 2.75x Amplification

SoftEtherVPN is a an open-source cross-platform multi-protocol VPN Program. When SoftEtherVPN is deployed with L2TP enabled on a device, it introduces the possibility of the host being used for amplification/reflection traffic generation because it will respond to every packet with two response...

5.3CVSS6.8AI score0.00514EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/06/30 12:0 a.m.31 views

FreeBSD : SoftEtherVPN -- multiple vulnerabilities (d821956f-1753-11ee-ad66-1c61b4739ac9)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the d821956f-1753-11ee-ad66-1c61b4739ac9 advisory. - Daiyuu Nobori reports: The SoftEther VPN project received a high level code review and...

9CVSS6.5AI score0.01543EPSS
Exploits6References8
Rows per page
Query Builder