mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-29 01:31:20 +00:00
44 lines
1.4 KiB
JSON
44 lines
1.4 KiB
JSON
{
|
|
"id": "CVE-2023-46849",
|
|
"sourceIdentifier": "security@openvpn.net",
|
|
"published": "2023-11-11T01:15:07.270",
|
|
"lastModified": "2023-11-16T02:15:27.083",
|
|
"vulnStatus": "Awaiting Analysis",
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "Using the --fragment option in certain configuration setups OpenVPN version 2.6.0 to 2.6.6 allows an attacker to trigger a divide by zero behaviour which could cause an application crash, leading to a denial of service."
|
|
},
|
|
{
|
|
"lang": "es",
|
|
"value": "El uso de la opci\u00f3n --fragment en ciertas configuraciones de OpenVPN versi\u00f3n 2.6.0 a 2.6.6 permite a un atacante desencadenar un comportamiento de divisi\u00f3n por cero que podr\u00eda provocar un bloqueo de la aplicaci\u00f3n y provocar una denegaci\u00f3n de servicio."
|
|
}
|
|
],
|
|
"metrics": {},
|
|
"weaknesses": [
|
|
{
|
|
"source": "security@openvpn.net",
|
|
"type": "Secondary",
|
|
"description": [
|
|
{
|
|
"lang": "en",
|
|
"value": "CWE-369"
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"references": [
|
|
{
|
|
"url": "https://community.openvpn.net/openvpn/wiki/CVE-2023-46849",
|
|
"source": "security@openvpn.net"
|
|
},
|
|
{
|
|
"url": "https://openvpn.net/security-advisory/access-server-security-update-cve-2023-46849-cve-2023-46850/",
|
|
"source": "security@openvpn.net"
|
|
},
|
|
{
|
|
"url": "https://www.debian.org/security/2023/dsa-5555",
|
|
"source": "security@openvpn.net"
|
|
}
|
|
]
|
|
} |