Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2017-5868CRLF Injection in Access Server

CWE-93CRLF Injection4 documents4 sources
Severity
6.1MEDIUMNVD
EPSS
8.5%
top 7.63%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Openvpn Access Server
Timeline
PublishedMay 26
Latest updateMay 17

Description

CRLF injection vulnerability in the web interface in OpenVPN Access Server 2.1.4 allows remote attackers to inject arbitrary HTTP headers and consequently conduct session fixation attacks and possibly HTTP response splitting attacks via "%0A" characters in the PATH_INFO to __session_start__/.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.7

Affected Packages1 packages

🔴Vulnerability Details

1
GHSA
GHSA-c9j2-xr8m-5hh8: CRLF injection vulnerability in the web interface in OpenVPN Access Server 22022-05-17

💥Exploits & PoCs

1
Nuclei
OpenVPN Access Server 2.1.4 - CRLF Injection

💬Community

1
HackerOne
CRLF Injection on openvpn.svc.ubnt.com2017-07-04
CVE-2017-5868 — CRLF Injection in Openvpn Access Server | cvebase