OpenVPN Access Server older than version 2.8.4 and version 2.9.5 generates new user authentication tokens instead of reusing exiting tokens on reconnect making it possible to circumvent the initial token expiry timestamp.
References
Link | Resource |
---|---|
https://openvpn.net/vpn-server-resources/release-notes/ | Release Notes Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: OpenVPN
Published: 2020-07-14T17:27:31
Updated: 2021-11-22T18:04:24
Reserved: 2020-06-25T00:00:00
Link: CVE-2020-15074
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-07-14T18:15:14.680
Modified: 2021-11-23T22:25:50.737
Link: CVE-2020-15074
JSON object: View
Redhat Information
No data.