06 Jan 2025

CVE-2024-8474

7.5 High Severity

OpenVPN Connect before version 3.5.0 can contain the configuration profile's clear-text private key which is logged in the application log, which an unauthorized actor can use to decrypt the VPN traffic

suggest your own:

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Apps (0)

Operating Systems (0)

xtranslations

xdetection

xremediation

Comments (0)