{
  "id": "CVE-2023-46850",
  "sourceIdentifier": "security@openvpn.net",
  "published": "2023-11-11T01:15:07.357",
  "lastModified": "2023-11-16T02:15:27.190",
  "vulnStatus": "Awaiting Analysis",
  "descriptions": [
    {
      "lang": "en",
      "value": "Use after free in OpenVPN version 2.6.0 to 2.6.6 may lead to undefined behavoir, leaking memory buffers or remote execution when sending network buffers to a remote peer."
    },
    {
      "lang": "es",
      "value": "Use after free en OpenVPN versi\u00f3n 2.6.0 a 2.6.6 puede provocar un comportamiento indefinido, p\u00e9rdida de b\u00faferes de memoria o ejecuci\u00f3n remota al enviar b\u00faferes de red a un par remoto."
    }
  ],
  "metrics": {},
  "weaknesses": [
    {
      "source": "security@openvpn.net",
      "type": "Secondary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://community.openvpn.net/openvpn/wiki/CVE-2023-46850",
      "source": "security@openvpn.net"
    },
    {
      "url": "https://openvpn.net/security-advisory/access-server-security-update-cve-2023-46849-cve-2023-46850/",
      "source": "security@openvpn.net"
    },
    {
      "url": "https://www.debian.org/security/2023/dsa-5555",
      "source": "security@openvpn.net"
    }
  ]
}