pkg:Alpine/openvpn
16 total CVEsCRITICAL4HIGH8MEDIUM3LOW1
✅ Check your installed version
All known vulnerabilities
- CRITICAL9.8CVE-2023-46850Use after free in OpenVPN version 2.6.0 to 2.6.6 may lead to undefined behavoir, leaking memory buffers or remote execution when sending ne…from 0, < 2.6.7-r0
- from 0, < 2.4.12-r0
- CRITICAL9.8CVE-2020-7224The Aviatrix OpenVPN client through 2.5.7 on Linux, macOS, and Windows is vulnerable when OpenSSL parameters are altered from the issued va…from 0, < 0
- CRITICAL9.1CVE-2024-5594OpenVPN before 2.6.11 does not santize PUSH_REPLY messages properly which an attacker controlling the server can use to inject unexpected a…from 0, < 2.5.10-r1
- HIGH8.8CVE-2024-4877OpenVPN version 2.4.0 through 2.6.10 on Windows allows an external, lesser privileged process to create a named pipe which the OpenVPN GUI…from 0, < 0
- HIGH7.8CVE-2018-9336openvpnserv.exe (aka the interactive service helper) in OpenVPN 2.4.x before 2.4.6 allows a local attacker to cause a double-free of memory…from 0, < 2.4.6-r0
- from 0, < 2.6.16-r0
- HIGH7.5CVE-2025-2704OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting…from 0, < 2.6.16-r0
- from 0, < 2.6.7-r0
- HIGH7.5CVE-2020-15078OpenVPN 2.5.1 and earlier versions allows a remote attackers to bypass authentication and access control channel data on servers configured…from 0, < 2.4.11-r0
- from 0, < 0
- HIGH7.5CVE-2017-7478OpenVPN version 2.3.12 and newer is vulnerable to unauthenticated Denial of Service of server via received large control packet.from 0, < 2.3.15-r0
- from 0, < 2.3.15-r0
- MEDIUM5.5CVE-2025-13751Interactive service agent in OpenVPN version 2.5.0 through 2.6.16 and 2.7_alpha1 through 2.7_rc2 on Windows allows a local authenticated us…from 0, < 0
- MEDIUM4.3CVE-2024-28882OpenVPN from 2.6.0 through 2.6.10 in a server role accepts multiple exit notifications from authenticated clients which will extend the val…from 0, < 2.6.11-r0
- from 0, < 2.4.9-r0