Openconnect Security Vulnerabilities and Issues — Openconnect CVE List

Lucene search

InfradeadOpenconnect

3 matches found

CVE•added 2020/05/12 6:15 p.m.•176 views

CVE-2020-12823

OpenConnect 8.09 has a buffer overflow, causing a denial of service (application crash) or possibly unspecified other impact, via crafted certificate data to get_cert_name in gnutls.c.

9.8CVSS9.4AI score0.01434EPSS

CVE•added 2019/09/17 12:15 p.m.•158 views

CVE-2019-16239

process_http_response in OpenConnect before 8.05 has a Buffer Overflow when a malicious server uses HTTP chunked encoding with crafted chunk sizes.

9.8CVSS9.2AI score0.04782EPSS

CVE•added 2020/02/13 11:15 p.m.•74 views

CVE-2013-7098

OpenConnect VPN client with GnuTLS before 5.02 contains a heap overflow if MTU is increased on reconnection.

9.8CVSS9.6AI score0.00682EPSS