Vulnerability in Openvpn 2
CVE-2024-24974
The interactive service in OpenVPN 2.6.9 and earlier allows the OpenVPN service pipe to be accessed remotely, which allows a remote attacker to interact with the privileged OpenVPN interactive service.
EPSS: 0.111 (93.6th percentile) — read the EPSS interpretation.
Affected products
- Openvpn 2 — versions 2.6.9 and earlier