← back
CVE-2020-15077

CVE-2020-15077

EPSS 1.2%CWE-305
OpenVPN Access Server 2.8.7 and earlier versions allows a remote attackers to bypass authentication and access control channel data on servers configured with deferred authentication, which can be used to potentially trigger further information leaks.
Affected products
n/a · OpenVPN Access Server

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://openvpn.net/security-advisory/access-server-security-update-cve-2020-15077/https://openvpn.net/vpn-server-resources/release-notes/