Description
OpenVPN Access Server older than version 2.8.4 and version 2.9.5 generates new user authentication tokens instead of reusing exiting tokens on reconnect making it possible to circumvent the initial token expiry timestamp.
Remediation
References
Related Vulnerabilities
Jboss EAP Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2023-1108)
WordPress Plugin Image Gallery-Responsive Photo Gallery Cross-Site Scripting (1.5.1)
WordPress Plugin Live Comment Preview Cross-Site Scripting (2.0.2)
WordPress Plugin MasterStudy LMS-for Online Courses and Education Security Bypass (3.2.13)
WordPress Plugin Gmedia Photo Gallery Arbitrary File Upload (1.2.1)