Openvpn Ovpn-Dco-Win vulnerabilities
3 known vulnerabilities affecting openvpn/ovpn-dco-win.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM2LOW1
Vulnerabilities
Page 1 of 1
CVE-2026-2738MEDIUMCVSS 5.6v2.8.02026-02-19
CVE-2026-2738 [MEDIUM] CWE-131 CVE-2026-2738: Buffer overflow in ovpn‑dco‑win version 2.8.0 allows local attackers to cause a system crash by send
Buffer overflow in ovpn‑dco‑win version 2.8.0 allows local attackers to cause a system crash by sending too large packets to the remote peer when the AEAD tag appears at the end of the encrypted packet
nvd
CVE-2025-50054MEDIUMCVSS 5.5≤ 1.3.0≥ 2.4.0, ≤ 2.5.8+2 more2025-06-20
CVE-2025-50054 [MEDIUM] CWE-122 CVE-2025-50054: Buffer overflow in OpenVPN ovpn-dco-win version 1.3.0 and earlier and version 2.5.8 and earlier allo
Buffer overflow in OpenVPN ovpn-dco-win version 1.3.0 and earlier and version 2.5.8 and earlier allows a local user process to send a too large control message buffer to the kernel driver resulting in a system crash
nvd
CVE-2024-5198LOWCVSS 3.3v1.1.12025-01-15
CVE-2024-5198 [LOW] CWE-476 CVE-2024-5198: OpenVPN ovpn-dco for Windows version 1.1.1 allows an unprivileged local attacker to send I/O control
OpenVPN ovpn-dco for Windows version 1.1.1 allows an unprivileged local attacker to send I/O control messages with invalid data to the driver resulting in a NULL pointer dereference leading to a system halt.
nvd