Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

infradead openconnect 2.22 vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2010-3902
OpenConnect prior to 2.26 places the webvpn cookie value in the debugging output, which might allow remote malicious users to obtain sensitive information by reading this output, as demonstrated by output posted to the public openconnect-devel mailing list.
Infradead Openconnect 1.30Infradead Openconnect 1.20Infradead Openconnect 1.10Infradead Openconnect 1.00Infradead OpenconnectInfradead Openconnect 2.22
NA
CVE-2012-3291
Heap-based buffer overflow in OpenConnect 3.18 allows remote servers to cause a denial of service via a crafted greeting banner.
Infradead Openconnect 3.15Infradead Openconnect 3.14Infradead Openconnect 2.26Infradead Openconnect 2.25Infradead Openconnect 2.11Infradead Openconnect 2.10Infradead Openconnect 2.01Infradead OpenconnectInfradead Openconnect 3.16Infradead Openconnect 3.01Infradead Openconnect 3.00Infradead Openconnect 2.20Infradead Openconnect 2.12Infradead Openconnect 1.10Infradead Openconnect 1.00Infradead Openconnect 3.13Infradead Openconnect 3.12Infradead Openconnect 2.24Infradead Openconnect 2.23Infradead Openconnect 2.00Infradead Openconnect 1.40Infradead Openconnect 3.11
NA
CVE-2012-6128
Multiple stack-based buffer overflows in http.c in OpenConnect prior to 4.08 allow remote VPN gateways to cause a denial of service (application crash) via a long (1) hostname, (2) path, or (3) cookie list in a response.
Infradead Openconnect 3.16Infradead Openconnect 3.15Infradead Openconnect 3.00Infradead Openconnect 2.26Infradead Openconnect 2.12Infradead Openconnect 2.11Infradead Openconnect 1.00Infradead Openconnect 3.17Infradead Openconnect 4.02Infradead Openconnect 3.02Infradead Openconnect 3.01Infradead Openconnect 2.21Infradead Openconnect 2.20Infradead Openconnect 1.20Infradead Openconnect 1.10Infradead Openconnect 4.00Infradead Openconnect 4.01Infradead Openconnect 3.14Infradead Openconnect 3.13Infradead Openconnect 2.25Infradead Openconnect 2.24Infradead Openconnect 2.10
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322administrator privilegesCVE-2024-1579hardcodedCVE-2023-20198CVE-2024-33587CVE-2024-33449CVE-2024-4308HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook