Security Advisory

CVE-2023-27395

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-12 15:27:54

Last updated 2024-08-02 12:09:43

Assigner talos

State PUBLISHED

Description

A heap-based buffer overflow vulnerability exists in the vpnserver WpcParsePacket() functionality of SoftEther VPN 4.41-9782-beta, 5.01.9674 and 5.02. A specially crafted network packet can lead to arbitrary code execution. An attacker can perform a man-in-the-middle attack to trigger this vulnerability.

← Browse all CVEs View on cve.org ↗