Description

OpenVPN Access Server 2.10 and prior versions are susceptible to resending multiple packets in a response to a reset packet sent from the client which the client again does not respond to, resulting in a limited amplification attack.

Remediation

References

CVE-2021-4234

Related Vulnerabilities

Serendipity Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2011-1134)

WordPress Plugin User Registration-Custom Registration Form, Login Form And User Profile Cross-Site Scripting (2.3.0)

WordPress Plugin Broken Link Checker Unspecified Vulnerability (1.10.7)

WordPress Plugin Support Ticket System By Phoeniixx Unspecified Vulnerability (2.7)

Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2020-9583)

Severity

High

Classification

CVE-2021-4234 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities