VYPR
Unrated severityNVD Advisory· Published Jan 15, 2025· Updated Jan 15, 2025

CVE-2024-5198

CVE-2024-5198

Description

OpenVPN ovpn-dco for Windows version 1.1.1 allows an unprivileged local attacker to send I/O control messages with invalid data to the driver resulting in a NULL pointer dereference leading to a system halt.

Affected products

3
  • OpenVPN/OpenVPNllm-fuzzy2 versions
    = 1.1.1+ 1 more
    • (no CPE)range: = 1.1.1
    • (no CPE)range: 2.6.10-I002
  • OpenVPN/ovpn-dcov5
    Range: 1.1.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.