Unrated severityNVD Advisory· Published Jul 14, 2020· Updated Aug 4, 2024
CVE-2020-15074
CVE-2020-15074
Description
OpenVPN Access Server older than version 2.8.4 and version 2.9.5 generates new user authentication tokens instead of reusing exiting tokens on reconnect making it possible to circumvent the initial token expiry timestamp.
Affected products
2- OpenVPN/Access Serverdescription
- Range: <2.8.4, <2.9.5
Patches
Vulnerability mechanics
References
1- openvpn.net/vpn-server-resources/release-notes/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.