CVE-2020-15077

OpenVPN Access Server 2.8.7 and earlier versions allows a remote attackers to bypass authentication and access control channel data on servers configured with deferred authentication, which can be used to potentially trigger further information leaks.

CVSS v3 5.3 MEDIUM
CVSS v2.0 3.5 LOW

5.3^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.6 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

3.5^/10

CVSS v2.0 : LOW

Vector : AV:N/AC:M/Au:S/C:P/I:N/A:N

Exploitability : 6.8 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
https://openvpn.net/security-advisory/access-server-security-update-cve-2020-15077/	Vendor Advisory
https://openvpn.net/vpn-server-resources/release-notes/	Release Notes Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:openvpn:openvpn_access_server:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2021-06-04 11:15

Updated : 2024-02-28 18:28

NVD link : CVE-2020-15077

Mitre link : CVE-2020-15077

CVE.ORG link : CVE-2020-15077

JSON object : View

Products Affected

openvpn

openvpn_access_server

CWE

CWE-287

Improper Authentication

CWE-305

Authentication Bypass by Primary Weakness

{"id": "CVE-2020-15077", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 3.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:S/C:P/I:N/A:N", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 6.8, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 1.6}]}, "published": "2021-06-04T11:15:07.697", "references": [{"url": "https://openvpn.net/security-advisory/access-server-security-update-cve-2020-15077/", "tags": ["Vendor Advisory"], "source": "security@openvpn.net"}, {"url": "https://openvpn.net/vpn-server-resources/release-notes/", "tags": ["Release Notes", "Vendor Advisory"], "source": "security@openvpn.net"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-287"}]}, {"type": "Secondary", "source": "security@openvpn.net", "description": [{"lang": "en", "value": "CWE-305"}]}], "descriptions": [{"lang": "en", "value": "OpenVPN Access Server 2.8.7 and earlier versions allows a remote attackers to bypass authentication and access control channel data on servers configured with deferred authentication, which can be used to potentially trigger further information leaks."}, {"lang": "es", "value": "OpenVPN Access Server versiones 2.8.7 y anteriores, permiten a atacantes remotos omitir la autenticaci\u00f3n y los datos del canal de control de acceso en servidores configurados con autenticaci\u00f3n diferida, que puede ser usado para desencadenar potencialmente nuevos filtrados de informaci\u00f3n"}], "lastModified": "2022-08-05T15:18:52.147", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:openvpn:openvpn_access_server:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FFB7CAB1-ECA3-4F8F-9DFD-048BD7ABE8E0", "versionEndIncluding": "2.8.7"}], "operator": "OR"}]}], "sourceIdentifier": "security@openvpn.net"}