Changes between Initial Version and Version 1 of CVE-2022-0547


Ignore:
Timestamp:
03/15/22 19:29:57 (2 years ago)
Author:
David Sommerseth
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • CVE-2022-0547

    v1 v1  
     1= CVE-2022-0547: Potential authentication by-pass with multiple deferred authentication plug-ins
     2
     3OpenVPN 2.1 until v2.4.12 and v2.5.6 may enable authentication bypass in external authentication plug-ins when more than one of them makes use of deferred authentication replies, which allows an external user to be granted access with only partially correct credentials.
     4
     5This issue is resolved in OpenVPN 2.4.12 and v2.5.6.