) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
Search Parameters:
- Results Type: Overview
- Keyword (text search): cpe:2.3:a:openvpn:connect:3.0.2:beta:*:*:*:macos:*:*
- CPE Name Search: true
There are 4 matching records.
Displaying matches 1 through 4.
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2023-7224 |
OpenVPN Connect version 3.0 through 3.4.6 on macOS allows local users to execute code in external third party libraries using the DYLD_INSERT_LIBRARIES environment variable Published: January 08, 2024; 9:15:47 AM -0500 |
V3.1: 7.8 HIGH V2.0:(not available) |
| CVE-2022-3761 |
OpenVPN Connect versions before 3.4.0.4506 (macOS) and OpenVPN Connect before 3.4.0.3100 (Windows) allows man-in-the-middle attackers to intercept configuration profile download requests which contains the users credentials Published: October 17, 2023; 9:15:11 AM -0400 |
V3.1: 5.9 MEDIUM V2.0:(not available) |
| CVE-2020-15075 |
OpenVPN Connect installer for macOS version 3.2.6 and older may corrupt system critical files it should not have access via symlinks in /tmp. Published: March 30, 2021; 10:15:13 AM -0400 |
V3.1: 7.1 HIGH V2.0: 3.6 LOW |
| CVE-2020-9442 |
OpenVPN Connect 3.1.0.361 on Windows has Insecure Permissions for %PROGRAMDATA%\OpenVPN Connect\drivers\tap\amd64\win10, which allows local users to gain privileges by copying a malicious drvstore.dll there. Published: February 28, 2020; 9:15:10 AM -0500 |
V3.1: 7.8 HIGH V2.0: 7.2 HIGH |