Security Advisory

CVE-2023-7235

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-02-21 10:55:15

Last updated 2024-08-26 16:13:36

Assigner OpenVPN

State PUBLISHED

Description

The OpenVPN GUI installer before version 2.6.9 did not set the proper access control restrictions to the installation directory of OpenVPN binaries when using a non-standard installation path, which allows an attacker to replace binaries to run arbitrary executables.

← Browse all CVEs View on cve.org ↗