CVE-2023-6247

Published: Feb 20, 2024

Modified: Oct 28, 2024

PUBLISHED

Description

The PKCS#7 parser in OpenVPN 3 Core Library versions through 3.8.3 did not properly validate the parsed data, which would result in the application crashing.

Vendor	Product	Versions
OpenVPN	OpenVPN 3 Core Library	affected `3.0 - <= 3.8.3`

Weaknesses (CWE)

CWE-476

References

https://community.openvpn.net/openvpn/wiki/CVE-2023-6247

technical-description

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-6247

Description

Affected Products

Weaknesses (CWE)

References