Unrated severityNVD Advisory· Published Dec 1, 2025· Updated Dec 1, 2025
CVE-2025-12106
CVE-2025-12106
Description
Insufficient argument validation in OpenVPN 2.7_alpha1 through 2.7_rc1 allows an attacker to trigger a heap buffer over-read when parsing IP addresses
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- community.openvpn.net/Security%20Announcements/CVE-2025-12106mitrevendor-advisory
- www.mail-archive.com/openvpn-announce@lists.sourceforge.net/msg00152.htmlmitrerelease-notes
News mentions
0No linked articles in our index yet.