CVE-2023-46850

Severity Score

9.8

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Use after free in OpenVPN version 2.6.0 to 2.6.6 may lead to undefined behavoir, leaking memory buffers or remote execution when sending network buffers to a remote peer.

Use after free en OpenVPN versión 2.6.0 a 2.6.6 puede provocar un comportamiento indefinido, pérdida de búferes de memoria o ejecución remota al enviar búferes de red a un par remoto.

*Credits: N/A

CVSS Scores

NISTv3.1 9.8

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2023-10-27 CVE Reserved
2023-11-11 CVE Published
2024-08-02 CVE Updated
2024-10-11 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-416: Use After Free

CAPEC

References (5)

URL	Tag	Source
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L3FS46ANNTAVLIQY56ZKGM5CBTRVBUNE	Mailing List
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/O54I7D753V6PU6XBU26FEROD2DSHEJQ4
https://www.debian.org/security/2023/dsa-5555	Third Party Advisory

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://community.openvpn.net/openvpn/wiki/CVE-2023-46850	2023-11-29
https://openvpn.net/security-advisory/access-server-security-update-cve-2023-46849-cve-2023-46850	2023-11-29

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Openvpn Search vendor "Openvpn"		Openvpn Search vendor "Openvpn" for product "Openvpn"				>= 2.6.0 <= 2.6.6 Search vendor "Openvpn" for product "Openvpn" and version " >= 2.6.0 <= 2.6.6"		community		Affected
Openvpn Search vendor "Openvpn"		Openvpn Access Server Search vendor "Openvpn" for product "Openvpn Access Server"				>= 2.11.0 <= 2.11.3 Search vendor "Openvpn" for product "Openvpn Access Server" and version " >= 2.11.0 <= 2.11.3"		-		Affected
Openvpn Search vendor "Openvpn"		Openvpn Access Server Search vendor "Openvpn" for product "Openvpn Access Server"				>= 2.12.0 < 2.12.2 Search vendor "Openvpn" for product "Openvpn Access Server" and version " >= 2.12.0 < 2.12.2"		-		Affected
Debian Search vendor "Debian"		Debian Linux Search vendor "Debian" for product "Debian Linux"				12.0 Search vendor "Debian" for product "Debian Linux" and version "12.0"		-		Affected
Fedoraproject Search vendor "Fedoraproject"		Fedora Search vendor "Fedoraproject" for product "Fedora"				39 Search vendor "Fedoraproject" for product "Fedora" and version "39"		-		Affected