Description

OpenVPN Access Server 2.7.3 to 2.8.7 allows remote attackers to trigger an assert during the user authentication phase via incorrect authentication token data in an early phase of the user authentication resulting in a denial of service.

Remediation

References

CVE-2020-36382

Related Vulnerabilities

WordPress Plugin Otter-Gutenberg Blocks-Page Builder for Gutenberg Editor & FSE PHAR Deserialization (2.2.5)

WordPress Plugin Jigoshop Information Disclosure (1.17.9)

WordPress Plugin WCFM Membership-WooCommerce Memberships for Multivendor Marketplace Privilege Escalation (2.10.0)

MySQL CVE-2021-35637 Vulnerability (CVE-2021-35637)

Atlassian Jira CVE-2019-20413 Vulnerability (CVE-2019-20413)

Severity

High

Classification

CVE-2020-36382 CWE-754 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities