CVE-2024-28882

OpenVPN from 2.6.0 through 2.6.10 in a server role accepts multiple exit notifications from authenticated clients which will extend the validity of a closing session

CVSS

No CVSS.

References

Link	Resource
https://community.openvpn.net/openvpn/wiki/CVE-2024-28882
https://www.mail-archive.com/openvpn-users@lists.sourceforge.net/msg07634.html

Configurations

No configuration.

History

No history.

Information

Published : 2024-07-08 22:15

Updated : 2024-07-09 18:19

NVD link : CVE-2024-28882

Mitre link : CVE-2024-28882

CVE.ORG link : CVE-2024-28882

JSON object : View

Products Affected

No product.

CWE

CWE-772

Missing Release of Resource after Effective Lifetime

JSON object

Attach tags to CVE-2024-28882

Attach tags to `CVE-2024-28882`