Unrated severityNVD Advisory· Published Oct 14, 2010· Updated Jun 16, 2026
CVE-2009-5009
CVE-2009-5009
Description
Double free vulnerability in OpenConnect before 1.40 might allow remote AnyConnect SSL VPN servers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted DTLS Cipher option during a reconnect operation.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:infradead:openconnect:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:infradead:openconnect:*:*:*:*:*:*:*:*range: <=1.30
- cpe:2.3:a:infradead:openconnect:1.00:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:1.10:*:*:*:*:*:*:*
- cpe:2.3:a:infradead:openconnect:1.20:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.