OpenVPN Vulnerability Let Attackers Crash Servers & Execute Remote Code

While the current vulnerability primarily causes server crashes, security experts warn that denial of service attacks can create opportunities for additional exploitation attempts, including potential paths to remote code execution in complex network environments. Historical context shows that OpenVPN has previously addressed more severe vulnerabilities, including CVE-2017-7521, which was a critical remote code execution bug that could drain server memory and potentially lead to code execution. A critical security vulnerability in OpenVPN has been discovered that could allow attackers to crash servers, potentially disrupting secure communications for thousands of users worldwide. The OpenVPN 2.6.14 release includes additional improvements beyond the security fix, such as repairs to Linux DCO source IP selection for –multihome, updates to OpenSSL 3.4.1, and several Windows-specific enhancements to the GUI and installer packages. Cyber Security News is a Dedicated News Platform For Cyber News, Cyber Attack News, Hacking News & Vulnerability Analysis. The vulnerability, identified as CVE-2025-2704, affects OpenVPN versions 2.6.1 through 2.6.13 when configured with the –tls-crypt-v2 option, a feature commonly used to enhance privacy and prevent deep packet inspection (DPI).

This Cyber News was published on cybersecuritynews.com. Publication date: Fri, 04 Apr 2025 06:20:22 +0000

Cyber News related to OpenVPN Vulnerability Let Attackers Crash Servers & Execute Remote Code

CVE-2021-36845 - Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities in YITH Maintenance Mode (WordPress plugin) versions < 1.3.8, there are 46 vulnerable parameters that were missed by the vendor while patching the 1.3.7 version to 1.3.8. ...
3 years ago

OpenVPN Vulnerability Let Attackers Crash Servers & Execute Remote Code - While the current vulnerability primarily causes server crashes, security experts warn that denial of service attacks can create opportunities for additional exploitation attempts, including potential paths to remote code execution in complex network ...
18 hours ago Cybersecuritynews.com CVE-2017-7521

CVE-2007-0228 - The DataCollector service in EIQ Networks Network Security Analyzer allows remote attackers to cause a denial of service (service crash) via a (1) &CONNECTSERVER& (2) &ADDENTRY& (3) &FIN& (4) &START& (5) ...
7 years ago

CVE-2023-52587 - In the Linux kernel, the following vulnerability has been resolved: ...
1 year ago

CVE-2019-12578 - A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v82 for Linux could allow an authenticated, local attacker to run arbitrary code with elevated privileges. The openvpn_launcher.64 binary is setuid root. This binary ...
4 years ago

Wordfence Intelligence Weekly WordPress Vulnerability Report (September 23, 2024 to September 29, 2024) - Software Name Software Slug 012 Ps Multi Languages 012-ps-multi-languages ABC APP CREATOR abcapp-creator Absolute Reviews absolute-reviews Accordion accordions Ads by WPQuads – Adsense Ads, Banner Ads, Popup Ads quick-adsense-reloaded Advanced File ...
6 months ago Wordfence.com Slug

CVE-2019-13363 - admin.php?pagenotification_by_mail in Piwigo 2.9.5 has XSS via the nbm_send_html_mail, nbm_send_mail_as, nbm_send_detailed_content, ...
2 years ago

CVE-2025-21881 - In the Linux kernel, the following vulnerability has been resolved: ...
1 week ago

CVE-2020-28092 - PESCMS Team 2.3.2 has multiple reflected XSS via the id parameter:?gTeam&mTask&amy&status3&id,?gTeam&mTask&amy&status0&id,?gTeam&mTask&amy&status1&id,?gTeam&mTask&amy&status10&id ...
4 years ago

CVE-2017-7512 - Red Hat 3scale (aka RH-3scale) API Management Platform (AMP) before 2.0.0 would permit creation of an access token without a client secret. An attacker could use this flaw to circumvent authentication controls and gain access to restricted APIs. ...
5 years ago

New HeadCrab Malware Hijacks 1,200 Redis Servers - Since September 2021, over a thousand vulnerable Redis servers online have been infected by a stealthy malware dubbed "HeadCrab", designed to build a botnet that mines Monero cryptocurrency. At least 1,200 servers have been infected by the HeadCrab ...
2 years ago Heimdalsecurity.com

CVE-2018-9105 - NordVPN 3.3.10 for macOS suffers from a root privilege escalation vulnerability. The vulnerability stems from its privileged helper tool's implemented XPC service. This XPC service is responsible for receiving and processing new OpenVPN ...
4 years ago

Thousands of Outdated Microsoft Exchange Servers are Susceptible to Cyber Attacks - A large number of Microsoft Exchange email servers in Europe, the United States, and Asia are currently vulnerable to remote code execution flaws due to their public internet exposure. These servers are running out-of-date software that is no longer ...
1 year ago Cysecurity.news CVE-2021-27065

CVE-2023-52934 - In the Linux kernel, the following vulnerability has been resolved: ...
1 week ago

HeadCrab Malware Infects 1,200 Redis Servers to Mine Monero Cryptocurrency - A new stealthy malware, HeadCrab, designed to hunt down vulnerable Redis servers online has infected over a thousand of them since September 2021. Discovered by Aqua Security researchers Nitzan Yaakov and Asaf Eitani, the malware has so far ensnared ...
2 years ago Bleepingcomputer.com

Hackers Compromised Over 1,200 Redis Database Servers - A new type of malware, designed to target vulnerable Redis servers on the internet, has been spreading rapidly since September 2021. This is a quick-spreading malware, designed to operate stealthily, that has already infiltrated over thousand ...
2 years ago Cybersecuritynews.com

CVE-2018-16371 - PESCMS Team 2.2.1 has multiple reflected XSS via the keyword parameter: gTeam&mUser&aindex&keyword, gTeam&mUser_group&aindex&keyword, gTeam&mDepartment&aindex&keyword, and ...
6 years ago

Over 11M SSH Servers are Vulnerable to new Terrapin Attack - Previously, in December 2023, it was reported that SSH servers were vulnerable to the new Terrapin Attack in which threat actors can downgrade an SSH protocol version, making it vulnerable to exploitation. This attack can also be used to redirect ...
1 year ago Cybersecuritynews.com

CVE-2021-47275 - In the Linux kernel, the following vulnerability has been resolved: ...
10 months ago

CVE-2020-10094 - A cross-site scripting (XSS) vulnerability in Lexmark CS31x before LW74.VYL.P273; CS41x before LW74.VY2.P273; CS51x before LW74.VY4.P273; CX310 before LW74.GM2.P273; CX410 & XC2130 before LW74.GM4.P273; CX510 & XC2132 before LW74.GM7.P273; ...
4 years ago

CVE-2024-36003 - In the Linux kernel, the following vulnerability has been resolved: ...
10 months ago

CVE-2019-13977 - index.php in Ovidentia 8.4.3 has XSS via tggroups, tgmaildoms&idxcreate&userid0&bgrpy, tgdelegat, tgsite&idxcreate, tgsite&item4, tgadmdir&idxmdb&id1, tgnotes&idxCreate, tgadmfaqs&idxAdd, or ...
5 years ago

CVE-2018-10204 - PureVPN 6.0.1 for Windows suffers from a SYSTEM privilege escalation vulnerability in its "sevpnclient" service. When configured to use the OpenVPN protocol, the "sevpnclient" service executes "openvpn.exe" using the OpenVPN ...
5 years ago

CVE-2021-3606 - OpenVPN before version 2.5.3 on Windows allows local users to load arbitrary dynamic loadable libraries via an OpenSSL configuration file if present, which allows the user to run arbitrary code with the same privilege level as the main OpenVPN ...
3 years ago

CVE-2023-32348 - ...
1 year ago