CSRF in Openvpn Openvpn_access_server

CVE-2013-2692

Cross-site request forgery (CSRF) vulnerability in the Admin web interface in OpenVPN Access Server before 1.8.5 allows remote attackers to hijack the authentication of administrators for requests that create administrative users.

Vulnerability class: CSRF (Cross-Site Request Forgery)

EPSS: 0.002 (39.6th percentile) — read the EPSS interpretation.