Search CVE reports
1 – 10 of 15 results
DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An...
29 affected packages
tinc, vpnc, connman, gadmin-openvpn-client, gadmin-openvpn-server...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| tinc | Ignored | Ignored | Ignored | Ignored |
| vpnc | Ignored | Ignored | Ignored | Ignored |
| connman | Ignored | Ignored | Ignored | Ignored |
| gadmin-openvpn-client | Not in release | Not in release | Ignored | Ignored |
| gadmin-openvpn-server | Not in release | Not in release | Ignored | Ignored |
| golang-github-apparentlymart-go-openvpn-mgmt | Ignored | Ignored | Ignored | — |
| kvpnc | Not in release | Not in release | Not in release | Ignored |
| libreswan | Ignored | Ignored | Ignored | Ignored |
| mozillavpn | Not in release | Ignored | Not in release | — |
| n2n | Ignored | Ignored | Ignored | Ignored |
| network-manager-fortisslvpn | Ignored | Ignored | Ignored | Ignored |
| network-manager-iodine | Ignored | Ignored | Ignored | Ignored |
| network-manager-l2tp | Ignored | Ignored | Ignored | Ignored |
| network-manager-openconnect | Ignored | Ignored | Ignored | Ignored |
| network-manager-openvpn | Ignored | Ignored | Ignored | Ignored |
| network-manager-pptp | Ignored | Ignored | Ignored | Ignored |
| network-manager-sstp | Ignored | Ignored | Not in release | — |
| network-manager-strongswan | Ignored | Ignored | Ignored | Ignored |
| network-manager-vpnc | Ignored | Ignored | Ignored | Ignored |
| openconnect | Ignored | Ignored | Ignored | Ignored |
| openfortivpn | Ignored | Ignored | Ignored | Ignored |
| openvpn | Ignored | Ignored | Ignored | Ignored |
| pptp-linux | Ignored | Ignored | Ignored | Ignored |
| pptpd | Not in release | Ignored | Ignored | Ignored |
| quicktun | Ignored | Ignored | Ignored | Ignored |
| riseup-vpn | Ignored | Not in release | Not in release | — |
| softether-vpn | Ignored | Ignored | Not in release | — |
| sshuttle | Ignored | Ignored | Ignored | Ignored |
| wireguard | Ignored | Ignored | Ignored | Ignored |
An issue was discovered in Avira Phantom VPN through 2.23.1 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the VPN server's IP address is sent in plaintext outside the VPN tunnel,...
31 affected packages
wireguard, connman, gadmin-openvpn-client, gadmin-openvpn-server, golang-github-apparentlymart-go-openvpn-mgmt...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| wireguard | Not affected | Not affected | Not affected | Not affected |
| connman | Not affected | Not affected | Not affected | Not affected |
| gadmin-openvpn-client | Not in release | Not in release | Not affected | Not affected |
| gadmin-openvpn-server | Not in release | Not in release | Not affected | Not affected |
| golang-github-apparentlymart-go-openvpn-mgmt | Not affected | Not affected | Not affected | Not in release |
| kvpnc | Not in release | Not in release | Not in release | Not affected |
| l2tp-ipsec-vpn-daemon | Not in release | Not in release | Not in release | Not in release |
| l2tp-ipsec-vpn | Not in release | Not in release | Not in release | Not in release |
| libreswan | Not affected | Not affected | Not affected | Not affected |
| mozillavpn | Not in release | Not affected | Not in release | Not in release |
| n2n | Not affected | Not affected | Not affected | Not affected |
| network-manager-fortisslvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-iodine | Not affected | Not affected | Not affected | Not affected |
| network-manager-l2tp | Not affected | Not affected | Not affected | Not affected |
| network-manager-openconnect | Not affected | Not affected | Not affected | Not affected |
| network-manager-openvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-pptp | Not affected | Not affected | Not affected | Not affected |
| network-manager-sstp | Not affected | Not affected | Not in release | Not in release |
| network-manager-strongswan | Not affected | Not affected | Not affected | Not affected |
| network-manager-vpnc | Not affected | Not affected | Not affected | Not affected |
| openconnect | Not affected | Not affected | Not affected | Not affected |
| openfortivpn | Not affected | Not affected | Not affected | Not affected |
| openvpn | Not affected | Not affected | Not affected | Not affected |
| pptp-linux | Not affected | Not affected | Not affected | Not affected |
| quicktun | Not affected | Not affected | Not affected | Not affected |
| riseup-vpn | Not affected | Not in release | Not in release | Not in release |
| softether-vpn | Not affected | Not affected | Not in release | Not in release |
| sshuttle | Not affected | Not affected | Not affected | Not affected |
| tinc | Not affected | Not affected | Not affected | Not affected |
| vpnc | Not affected | Not affected | Not affected | Not affected |
| zentyal-openvpn | Not in release | Not in release | Not in release | Not in release |
An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that traffic to the local network is sent in plaintext outside the VPN tunnel even if...
31 affected packages
wireguard, n2n, connman, gadmin-openvpn-client, gadmin-openvpn-server...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| wireguard | Ignored | Ignored | Not affected | Ignored |
| n2n | Not affected | Not affected | Not affected | Not affected |
| connman | Not affected | Not affected | Not affected | Not affected |
| gadmin-openvpn-client | Not in release | Not in release | Not affected | Not affected |
| gadmin-openvpn-server | Not in release | Not in release | Not affected | Not affected |
| openfortivpn | Not affected | Not affected | Not affected | Not affected |
| golang-github-apparentlymart-go-openvpn-mgmt | Not affected | Not affected | Not affected | Not in release |
| kvpnc | Not in release | Not in release | Not in release | Not affected |
| l2tp-ipsec-vpn-daemon | Not in release | Not in release | Not in release | Not in release |
| l2tp-ipsec-vpn | Not in release | Not in release | Not in release | Not in release |
| libreswan | Not affected | Not affected | Not affected | Not affected |
| mozillavpn | Not in release | Not affected | Not in release | Not in release |
| network-manager-fortisslvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-iodine | Not affected | Not affected | Not affected | Not affected |
| network-manager-l2tp | Not affected | Not affected | Not affected | Not affected |
| network-manager-openconnect | Not affected | Not affected | Not affected | Not affected |
| network-manager-openvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-pptp | Not affected | Not affected | Not affected | Not affected |
| network-manager-sstp | Not affected | Not affected | Not in release | Not in release |
| network-manager-strongswan | Not affected | Not affected | Not affected | Not affected |
| network-manager-vpnc | Not affected | Not affected | Not affected | Not affected |
| openconnect | Not affected | Not affected | Not affected | Not affected |
| pptp-linux | Not affected | Not affected | Not affected | Not affected |
| quicktun | Not affected | Not affected | Not affected | Not affected |
| riseup-vpn | Not affected | Not in release | Not in release | Not in release |
| softether-vpn | Not affected | Not affected | Not in release | Not in release |
| sshuttle | Not affected | Not affected | Not affected | Not affected |
| tinc | Not affected | Not affected | Not affected | Not affected |
| vpnc | Not affected | Not affected | Not affected | Not affected |
| zentyal-openvpn | Not in release | Not in release | Not in release | Not in release |
| openvpn | Not affected | Not affected | Not affected | Not affected |
An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the VPN server's IP address is sent in plaintext outside the VPN...
31 affected packages
wireguard, tinc, connman, gadmin-openvpn-client, gadmin-openvpn-server...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| wireguard | Not affected | Not affected | Not affected | Not affected |
| tinc | Not affected | Not affected | Not affected | Not affected |
| connman | Not affected | Not affected | Not affected | Not affected |
| gadmin-openvpn-client | Not in release | Not in release | Not affected | Not affected |
| gadmin-openvpn-server | Not in release | Not in release | Not affected | Not affected |
| golang-github-apparentlymart-go-openvpn-mgmt | Not affected | Not affected | Not affected | Not in release |
| kvpnc | Not in release | Not in release | Not in release | Not affected |
| l2tp-ipsec-vpn-daemon | Not in release | Not in release | Not in release | Not in release |
| l2tp-ipsec-vpn | Not in release | Not in release | Not in release | Not in release |
| libreswan | Not affected | Not affected | Not affected | Not affected |
| mozillavpn | Not in release | Not affected | Not in release | Not in release |
| n2n | Not affected | Not affected | Not affected | Not affected |
| network-manager-fortisslvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-iodine | Not affected | Not affected | Not affected | Not affected |
| network-manager-l2tp | Not affected | Not affected | Not affected | Not affected |
| network-manager-openconnect | Not affected | Not affected | Not affected | Not affected |
| network-manager-openvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-pptp | Not affected | Not affected | Not affected | Not affected |
| network-manager-sstp | Not affected | Not affected | Not in release | Not in release |
| network-manager-strongswan | Not affected | Not affected | Not affected | Not affected |
| network-manager-vpnc | Not affected | Not affected | Not affected | Not affected |
| openconnect | Not affected | Not affected | Not affected | Not affected |
| openfortivpn | Not affected | Not affected | Not affected | Not affected |
| openvpn | Not affected | Not affected | Not affected | Not affected |
| pptp-linux | Not affected | Not affected | Not affected | Not affected |
| quicktun | Not affected | Not affected | Not affected | Not affected |
| riseup-vpn | Not affected | Not in release | Not in release | Not in release |
| softether-vpn | Not affected | Not affected | Not in release | Not in release |
| sshuttle | Not affected | Not affected | Not affected | Not affected |
| vpnc | Not affected | Not affected | Not affected | Not affected |
| zentyal-openvpn | Not in release | Not in release | Not in release | Not in release |
The WireGuard client 0.5.3 on Windows insecurely configures the operating system and firewall such that traffic to a local network that uses non-RFC1918 IP addresses is blocked. This allows an adversary to trick the victim into...
31 affected packages
wireguard, kvpnc, connman, gadmin-openvpn-client, gadmin-openvpn-server...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| wireguard | Ignored | Ignored | Ignored | Ignored |
| kvpnc | Not in release | Not in release | Not in release | Not affected |
| connman | Not affected | Not affected | Not affected | Not affected |
| gadmin-openvpn-client | Not in release | Not in release | Not affected | Not affected |
| gadmin-openvpn-server | Not in release | Not in release | Not affected | Not affected |
| golang-github-apparentlymart-go-openvpn-mgmt | Not affected | Not affected | Not affected | Not in release |
| l2tp-ipsec-vpn-daemon | Not in release | Not in release | Not in release | Not in release |
| l2tp-ipsec-vpn | Not in release | Not in release | Not in release | Not in release |
| libreswan | Not affected | Not affected | Not affected | Not affected |
| mozillavpn | Not in release | Not affected | Not in release | Not in release |
| n2n | Not affected | Not affected | Not affected | Not affected |
| network-manager-fortisslvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-iodine | Not affected | Not affected | Not affected | Not affected |
| network-manager-l2tp | Not affected | Not affected | Not affected | Not affected |
| network-manager-openconnect | Not affected | Not affected | Not affected | Not affected |
| network-manager-openvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-pptp | Not affected | Not affected | Not affected | Not affected |
| network-manager-sstp | Not affected | Not affected | Not in release | Not in release |
| network-manager-strongswan | Not affected | Not affected | Not affected | Not affected |
| network-manager-vpnc | Not affected | Not affected | Not affected | Not affected |
| openconnect | Not affected | Not affected | Not affected | Not affected |
| openfortivpn | Not affected | Not affected | Not affected | Not affected |
| pptp-linux | Not affected | Not affected | Not affected | Not affected |
| quicktun | Not affected | Not affected | Not affected | Not affected |
| riseup-vpn | Not affected | Not in release | Not in release | Not in release |
| softether-vpn | Not affected | Not affected | Not in release | Not in release |
| sshuttle | Not affected | Not affected | Not affected | Not affected |
| tinc | Not affected | Not affected | Not affected | Not affected |
| vpnc | Not affected | Not affected | Not affected | Not affected |
| zentyal-openvpn | Not in release | Not in release | Not in release | Not in release |
| openvpn | Not affected | Not affected | Not affected | Not affected |
OpenConnect 8.09 has a buffer overflow, causing a denial of service (application crash) or possibly unspecified other impact, via crafted certificate data to get_cert_name in gnutls.c.
1 affected package
openconnect
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| openconnect | Not affected | Not affected | Vulnerable | Vulnerable |
OpenConnect through 8.08 mishandles negative return values from X509_check_ function calls, which might assist attackers in performing man-in-the-middle attacks.
1 affected package
openconnect
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| openconnect | — | Not affected | Not affected | Not affected |
OpenConnect VPN client with GnuTLS before 5.02 contains a heap overflow if MTU is increased on reconnection.
1 affected package
openconnect
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| openconnect | — | — | Not affected | Not affected |
Some fixes available 1 of 6
process_http_response in OpenConnect before 8.05 has a Buffer Overflow when a malicious server uses HTTP chunked encoding with crafted chunk sizes.
1 affected package
openconnect
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| openconnect | — | Not affected | Not affected | Fixed |
Multiple stack-based buffer overflows in http.c in OpenConnect before 4.08 allow remote VPN gateways to cause a denial of service (application crash) via a long (1) hostname, (2) path, or (3) cookie list in a response.
1 affected package
openconnect
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| openconnect | — | — | — | — |