OpenVPN plug-ins on Windows with OpenVPN 2.6.9 and...
High severity
Unreviewed
Published
Jul 8, 2024
to the GitHub Advisory Database
•
Updated Jul 11, 2024
Description
Published by the National Vulnerability Database
Jul 8, 2024
Published to the GitHub Advisory Database
Jul 8, 2024
Last updated
Jul 11, 2024
OpenVPN plug-ins on Windows with OpenVPN 2.6.9 and earlier could be loaded from any directory, which allows an attacker to load an arbitrary plug-in which can be used to interact with the privileged OpenVPN interactive service.
References