OpenVPN Reachable Assertion Denial of Service Vulnerability

OpenVPN Reachable Assertion Denial of Service Vulnerability

CVE-2017-7479 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:N/A:P

OpenVPN versions before 2.3.15 and before 2.4.2 are vulnerable to reachable assertion when packet-ID counter rolls over resulting into Denial of Service of server by authenticated attacker.

Learn more about our Cis Benchmark Audit For Server Software.