Openvpn Access Server

4 CVEs affecting Openvpn Access Server. Latest disclosed: 2026-07-08. Critical: 1, High: 1.

Top CVEs affecting Openvpn Access Server
CVESeverityScorePublishedSummary
CVE-2023-46850Critical9.82023-11-11Use after free in OpenVPN version 2.6.0 to 2.6.6 may lead to undefined behavoir, leaking memory buffers or remote execution when sending network buffers to a r…
CVE-2023-46849High7.52023-11-11Using the --fragment option in certain configuration setups OpenVPN version 2.6.0 to 2.6.6 allows an attacker to trigger a divide by zero behaviour which could…
CVE-2025-50055Medium6.42025-10-27Cross-site scripting (XSS) vulnerability in the SAML Authentication module in OpenVPN Access Server version 2.14.0 through 2.14.3 allows configured remote SAML…
CVE-2025-31102026-07-08OpenVPN Access Server 2.7.2 through 3.1.0 accepts bare line-feed sequences inside HTTP header values, allowing remote attackers to perform HTTP request smuggli…