Openvpn Access Server Security Vulnerabilities and Issues — Openvpn Access Server CVE List

Lucene search

OpenvpnOpenvpn Access Server

3 matches found

CVE•added 2022/07/06 4:15 p.m.•81 views

CVE-2022-33737

The OpenVPN Access Server installer creates a log file readable for everyone, which from version 2.10.0 and before 2.11.0 may contain a random generated admin password

7.5CVSS7.6AI score0.00344EPSS

CVE•added 2022/07/06 4:15 p.m.•63 views

CVE-2022-33738

OpenVPN Access Server before 2.11 uses a weak random generator used to create user session token for the web portal

7.5CVSS7.5AI score0.00399EPSS

CVE•added 2022/07/06 8:15 p.m.•59 views

CVE-2021-4234

OpenVPN Access Server 2.10 and prior versions are susceptible to resending multiple packets in a response to a reset packet sent from the client which the client again does not respond to, resulting in a limited amplification attack.

7.5CVSS7.4AI score0.00536EPSS