7.8

CVE-2018-9336

Exploit
openvpnserv.exe (aka the interactive service helper) in OpenVPN 2.4.x before 2.4.6 allows a local attacker to cause a double-free of memory by sending a malformed request to the interactive service. This could cause a denial-of-service through memory corruption or possibly have unspecified other impact including privilege escalation.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
OpenvpnOpenvpn Version >= 2.4.0 < 2.4.6
SlackwareSlackware Linux Version13.0
SlackwareSlackware Linux Version13.1
SlackwareSlackware Linux Version13.37
SlackwareSlackware Linux Version14.0
SlackwareSlackware Linux Version14.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.61% 0.444
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 4.6 3.9 6.4
AV:L/AC:L/Au:N/C:P/I:P/A:P
CWE-415 Double Free

The product calls free() twice on the same memory address.

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2018&m=slackware-security.568761
Third Party Advisory
Mailing List
https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn24
Vendor Advisory
Release Notes
https://github.com/OpenVPN/openvpn/commit/1394192b210cb3c6624a7419bcf3ff966742e79b
Patch
Third Party Advisory
https://github.com/OpenVPN/openvpn/releases/tag/v2.4.6
Third Party Advisory
Release Notes
https://www.tenable.com/security/research/tra-2018-09
Third Party Advisory
Exploit