CVE-2023-46850
published 2023-11-11CVE-2023-46850: Use after free in OpenVPN version 2.6.0 to 2.6.6 may lead to undefined behavoir, leaking memory buffers or remote execution when sending network buffers to a…
PriorityP356critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
1.98%
78.1th percentile
Use after free in OpenVPN version 2.6.0 to 2.6.6 may lead to undefined behavoir, leaking memory buffers or remote execution when sending network buffers to a remote peer.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | openvpn | < openvpn 2.6.3-1+deb12u2 (bookworm) | openvpn 2.6.3-1+deb12u2 (bookworm) |
| fedoraproject | fedora | — | — |
| openvpn | access_server | 2.11.0 – 2.11.3 | — |
| openvpn | access_server | 2.12.0 – 2.12.2 | — |
| openvpn | openvpn | >= 0 < 2.6.3-1+deb12u2 | 2.6.3-1+deb12u2 |
| openvpn | openvpn | >= 0 < 2.6.7-1 | 2.6.7-1 |
| openvpn | openvpn | >= 0 < 2.6.7-1 | 2.6.7-1 |
| openvpn | openvpn | >= 0 < 2.6.5-0ubuntu1.1 | 2.6.5-0ubuntu1.1 |
| openvpn | openvpn | 2.6.0 – 2.6.6 | — |
| openvpn | openvpn_2 | 2.6.0 – 2.6.6 | — |
| openvpn | openvpn_access_server | 2.11.0 – 2.11.3 | — |
| openvpn | openvpn_access_server | >= 2.12.0 < 2.12.2 | 2.12.2 |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
osv9.8CRITICAL
vendor_debian9.8CRITICAL
vendor_ubuntu7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
Siemens SINEMA
cisa_ics·2024-09-12·CVSS 9.8
[CRITICAL] Siemens SINEMA
ICS Advisory
##
Siemens SINEMA
Release DateSeptember 12, 2024
Alert CodeICSA-24-256-10
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global).
View CSAF
## 1. EXECUTIVE SUMMARY
- CVSS v4 5.3
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Siemens
- Equipment: SINEMA
- Vulnerabilities: Use After Free, Improper Input Validation, Improper Certificate Validation, Missing Release of Resource after Effective Lifetime, Improper Validation of Certificate with Host Mismatch, Insufficient Sessi
Ubuntu
OpenVPN vulnerabilities
vendor_ubuntu·2023-11-16·CVSS 7.5
CVE-2023-46850 [HIGH] OpenVPN vulnerabilities
Title: OpenVPN vulnerabilities
Summary: Several security issues were fixed in OpenVPN.
It was discovered that OpenVPN incorrectly handled the --fragment option
in certain configurations. A remote attacker could possibly use this issue
to cause OpenVPN to crash, resulting in a denial of service.
(CVE-2023-46849)
It was discovered that OpenVPN incorrectly handled certain memory
operations. A remote attacker could use this issue to cause OpenVPN to
crash, obtain sensitive information, or possibly execute arbitrary code.
(CVE-2023-46850)
Instructions: In general, a standard system update will make all the necessary changes.
Debian
CVE-2023-46850: openvpn - Use after free in OpenVPN version 2.6.0 to 2.6.6 may lead to undefined behavoir,...
vendor_debian·2023·CVSS 9.8
CVE-2023-46850 [CRITICAL] CVE-2023-46850: openvpn - Use after free in OpenVPN version 2.6.0 to 2.6.6 may lead to undefined behavoir,...
Use after free in OpenVPN version 2.6.0 to 2.6.6 may lead to undefined behavoir, leaking memory buffers or remote execution when sending network buffers to a remote peer.
Scope: local
bookworm: resolved (fixed in 2.6.3-1+deb12u2)
bullseye: resolved
forky: resolved (fixed in 2.6.7-1)
sid: resolved (fixed in 2.6.7-1)
trixie: resolved (fixed in 2.6.7-1)
VulDB
OpenVPN/OpenVPN Access Server use after free (FEDORA-2023-d9d55a0bfc)
vuldb·2026-06-24·CVSS 9.8
CVE-2023-46850 [CRITICAL] OpenVPN/OpenVPN Access Server use after free (FEDORA-2023-d9d55a0bfc)
A vulnerability has been found in OpenVPN and OpenVPN Access Server and classified as critical. This affects an unknown function. Performing a manipulation results in use after free.
This vulnerability is cataloged as CVE-2023-46850. It is possible to initiate the attack remotely. There is no exploit available.
The affected component should be upgraded.
OSV
openvpn vulnerabilities
osv·2023-11-16·CVSS 7.5
CVE-2023-46849 [HIGH] openvpn vulnerabilities
openvpn vulnerabilities
It was discovered that OpenVPN incorrectly handled the --fragment option
in certain configurations. A remote attacker could possibly use this issue
to cause OpenVPN to crash, resulting in a denial of service.
(CVE-2023-46849)
It was discovered that OpenVPN incorrectly handled certain memory
operations. A remote attacker could use this issue to cause OpenVPN to
crash, obtain sensitive information, or possibly execute arbitrary code.
(CVE-2023-46850)
GHSA
GHSA-jg57-vh55-3g23: Use after free in OpenVPN version 2
ghsa_unreviewed·2023-11-11
CVE-2023-46850 [CRITICAL] CWE-416 GHSA-jg57-vh55-3g23: Use after free in OpenVPN version 2
Use after free in OpenVPN version 2.6.0 to 2.6.6 may lead to undefined behavoir, leaking memory buffers or remote execution when sending network buffers to a remote peer.
OSV
CVE-2023-46850: Use after free in OpenVPN version 2
osv·2023-11-11·CVSS 9.8
CVE-2023-46850 [CRITICAL] CVE-2023-46850: Use after free in OpenVPN version 2
Use after free in OpenVPN version 2.6.0 to 2.6.6 may lead to undefined behavoir, leaking memory buffers or remote execution when sending network buffers to a remote peer.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://community.openvpn.net/openvpn/wiki/CVE-2023-46850https://openvpn.net/security-advisory/access-server-security-update-cve-2023-46849-cve-2023-46850/https://community.openvpn.net/openvpn/wiki/CVE-2023-46850https://lists.fedoraproject.org/archives/list/[email protected]/message/L3FS46ANNTAVLIQY56ZKGM5CBTRVBUNE/https://lists.fedoraproject.org/archives/list/[email protected]/message/O54I7D753V6PU6XBU26FEROD2DSHEJQ4/https://openvpn.net/security-advisory/access-server-security-update-cve-2023-46849-cve-2023-46850/https://www.debian.org/security/2023/dsa-5555
2023-11-11
Published