CVE-2024-28820 — Vulnetix

CVE-2024-28820 PUBLISHED CVSS 6.300000190734863 MEDIUM

Buffer overflow in the extract_openvpn_cr function in openvpn-cr.c in openvpn-auth-ldap (aka the Three Rings Auth-LDAP plugin for OpenVPN) 2.0.4 allows attackers with a valid LDAP username and who can control the challenge/response password field to pass a string with more than 14 colons into this field and cause a buffer overflow.

EPSS 0.22% · 44.2th percentile

Risk Scores

CVSS v3.1

6.300000190734863

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

EPSS Score

0.22%

44.2th percentile

Affected Products

Vendor	Product	Versions
threerings	openvpn-auth-ldap	2.04
n/a	n/a	n/a

Timeline

Jun 27, 2024 CVE Published
Jun 28, 2024 EPSS Score
Jul 20, 2024 EPSS Score
Aug 12, 2024 EPSS Score
Sep 3, 2024 EPSS Score
Sep 26, 2024 EPSS Score
Oct 4, 2024 Coalition ESS Score
Oct 18, 2024 EPSS Score
Oct 25, 2024 Coalition ESS Score
Nov 4, 2024 CVE Updated
Nov 6, 2024 Coalition ESS Score
Nov 9, 2024 EPSS Score

References

https://github.com/threerings/openvpn-auth-ldap/tags url
https://github.com/threerings/openvpn-auth-ldap/pull/92 url
https://nvd.nist.gov/vuln/detail/CVE-2024-28820 advisory

Open in Interactive Console →