Where
-Infinity
0

Trending

Last week
Last month
Last year

Vendor Risk Score

See how openvpn compares to other vendors in security performance

View Risk Score →

OpenVPN ovpn-dco-winBuffer Overflow

Risk 29
Severity
5.6
First published (updated )
CVE-2026-11604

OpenVPN OpenVPN ConnectOS Command Injection

Risk 57
Severity
9.4
EPSS
0.06%
First published (updated )
CVE-2026-9560

WAGO WBM (Web-Based Management)Wago: Vulnerability in WBM through Open VPN

Risk 66
Severity
7.2
First published (updated )
CVE-2024-1490

OpenVPN ovpn-dco-winBuffer Overflow

Risk 23
Severity
5.6
EPSS
0.02%
First published (updated )
CVE-2026-2738

OpenVPN OpenVPNInsufficient epoch key slot processing in OpenVPN 2.7_alpha1 through 2.7_rc5 allows remote authentic…

Risk 28
Severity
3.8
First published (updated )
CVE-2025-15497
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

OpenVPN OpenVPNImproper validation of source IP addresses in OpenVPN version 2.6.0 through 2.6.15 and 2.7_alpha1 th…

Risk 43
Severity
7.5
First published (updated )
CVE-2025-13086

OpenVPN OpenVPNInteractive service agent in OpenVPN version 2.5.0 through 2.6.16 and 2.7_alpha1 through 2.7_rc2 on …

Risk 32
Severity
5.5
First published (updated )
CVE-2025-13751

OpenVPN OpenVPNInsufficient argument validation in OpenVPN 2.7_alpha1 through 2.7_rc1 allows an attacker to trigger…

Risk 66
Severity
9.1
First published (updated )
CVE-2025-12106

OpenVPN Access ServerXSS

Risk 39
Severity
6.4
First published (updated )
CVE-2025-50055

OpenVPN OpenVPNOS Command Injection

Risk 79
Severity
8.8
First published (updated )
CVE-2025-10680
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

OpenVPN ovpn-dco-winBuffer Overflow

Risk 24
Severity
5.5
EPSS
0.02%
First published (updated )
CVE-2025-50054

OpenVPN OpenVPN 3 LinuxThe configuration initialization tool in OpenVPN 3 Linux v20 through v24 on Linux allows a local att…

Risk 36
Severity
6.2
First published (updated )
CVE-2025-3908

OpenVPN OpenVPNOpenVPN version 2.4.0 through 2.6.10 on Windows allows an external, lesser privileged process to cre…

Risk 79
Severity
8.8
First published (updated )
CVE-2024-4877

CVE-2025-2704 - OpenVPN 2.6.1 through 2.6.13 with possible DoS

First published (updated )
https://seclists.org/oss-sec/2025/q2/8

OpenVPN OpenVPN- OpenVPN 2.6.1 through 2.6.13 with possible DoS

Risk 46
Severity
7.5
First published (updated )
CVE-2025-2704
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Easy-RSA Easy-RSAWeak Encryption

Risk 39
Severity
5.3
First published (updated )
CVE-2024-13454

OpenVPN ovpn-dcoNull Pointer Dereference

Risk 18
Severity
3.3
First published (updated )
CVE-2024-5198

OpenVPN OpenVPN ConnectOpenVPN Connect before version 3.5.0 can contain the configuration profile's clear-text private key …

Risk 43
Severity
7.5
First published (updated )
CVE-2024-8474

debian/openvpnLast updated 9 April 2025

Risk 66
Severity
9.1
First published (updated )
CVE-2024-5594

debian/openvpnLast updated 24 July 2024

Risk 22
Severity
4.3
First published (updated )
CVE-2024-28882
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

TAP-Windows TAP-Windows6 driverInteger Overflow

Risk 86
Severity
9.8
First published (updated )
CVE-2024-1305

OpenVPN OpenVPNMalicious File Upload

Risk 86
Severity
9.8
First published (updated )
CVE-2024-27903

OpenVPN OpenVPNThe interactive service in OpenVPN 2.6.9 and earlier allows the OpenVPN service pipe to be accessed …

Risk 43
Severity
7.5
First published (updated )
CVE-2024-24974

OpenVPN OpenVPNThe interactive service in OpenVPN 2.6.9 and earlier allows an attacker to send data causing a stack…

Risk 69
Severity
7.8
First published (updated )
CVE-2024-27459

OpenVPN OpenVPN GUIThe OpenVPN GUI installer before version 2.6.9 did not set the proper access control restrictions to…

Risk 74
Severity
8.4
First published (updated )
CVE-2023-7235
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

OpenVPN OpenVPN 3 Core LibraryNull Pointer Dereference

Risk 38
Severity
6.5
First published (updated )
CVE-2023-6247

OpenVPN Connect WindowsThe nodejs framework in OpenVPN Connect 3.0 through 3.4.3 (Windows)/3.4.7 (macOS) was not properly c…

Risk 69
Severity
7.8
First published (updated )
CVE-2023-7245

OpenVPN Connect MacosCode Injection

Risk 51
Severity
7.8
EPSS
0.04%
First published (updated )
CVE-2023-7224

OpenVPN OpenVPN Access ServerUse After Free

Risk 86
Severity
9.8
First published (updated )
CVE-2023-46850

OpenVPN OpenVPN Access ServerDivide by Zero

Risk 43
Severity
7.5
First published (updated )
CVE-2023-46849
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203