Download
| Alert*
oval:org.secpod.oval:def:1601473
OpenVPN 2.5.1 and earlier versions allows a remote attackers to bypass authentication and access control channel data on servers configured with deferred authentication, which can be used to potentially trigger further information leaks oval:org.secpod.oval:def:71926 The host is installed with OpenVPN before 2.4.11 or 2.5.x before 2.5.2 and is prone to an authentication bypass vulnerability. A flaw is present in the application, which fails to properly handle servers configured with deferred authentication. Successful exploitation could allow remote attackers to ... oval:org.secpod.oval:def:71635 openvpn: virtual private network software everal security issues were fixed in OpenVPN. oval:org.secpod.oval:def:705991 openvpn: virtual private network software everal security issues were fixed in OpenVPN. oval:org.secpod.oval:def:119985 OpenVPN is a robust and highly flexible tunneling application that uses all of the encryption, authentication, and certification features of the OpenSSL library to securely tunnel IP networks over a single UDP or TCP port. It can use the Marcus Franz Xaver Johannes Oberhumers LZO library for compres ... oval:org.secpod.oval:def:119754 OpenVPN is a robust and highly flexible tunneling application that uses all of the encryption, authentication, and certification features of the OpenSSL library to securely tunnel IP networks over a single UDP or TCP port. It can use the Marcus Franz Xaver Johannes Oberhumers LZO library for compres ... oval:org.secpod.oval:def:72086 openvpn: virtual private network software everal security issues were fixed in OpenVPN. oval:org.secpod.oval:def:120075 OpenVPN is a robust and highly flexible tunneling application that uses all of the encryption, authentication, and certification features of the OpenSSL library to securely tunnel IP networks over a single UDP or TCP port. It can use the Marcus Franz Xaver Johannes Oberhumers LZO library for compres ... oval:org.secpod.oval:def:89044315 This update for openvpn fixes the following issues: - CVE-2020-15078: Fixed authentication bypass with deferred authentication . - CVE-2018-7544: Fixed cross-protocol scripting issue that was discovered in the management interface . oval:org.secpod.oval:def:89047244 This update for openvpn fixes the following issues: - CVE-2020-15078: Fixed authentication bypass with deferred authentication . - CVE-2020-11810: Fixed race condition between allocating peer-id and initializing data channel key . - CVE-2018-7544: Fixed cross-protocol scripting issue that was discov ... |