CRITICAL✓ PATCH🇵🇱 Wersja polska

CVE-2024-27903

CVSS 9.8v3.1pub. 2024-07-08upd. 2024-11-21

OpenVPN plug-ins on Windows with OpenVPN 2.6.9 and earlier could be loaded from any directory, which allows an attacker to load an arbitrary plug-in which can be used to interact with the privileged OpenVPN interactive service.

🤖 AI Analysis
How it works

The OpenVPN plugin system on Windows does not restrict the locations from which plugin files can be loaded. An attacker can place a malicious DLL library in any location accessible to the process and then trick the application into loading it. The loaded plugin gains the ability to interact with the privileged OpenVPN Interactive Service, which runs with elevated system privileges.

Impact

An attacker can execute arbitrary code with system privileges, leading to complete system compromise, disclosure of sensitive data, and violation of system integrity and availability.

Mitigation & patch

OpenVPN should be updated to a version higher than 2.6.9, which restricts the directories from which plugins can be loaded. Details are available in the official security advisory from the vendor: https://openvpn.net/security-advisory/ovpnx-vulnerability-cve-2024-27903-cve-2024-27459-cve-2024-24974/

Who is affected

OpenVPN version 2.6.9 and earlier running on Windows

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Openvpn

    APP
    Openvpn
    < 2.5.102.6.0 – 2.6.10 (bez)
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
VPN
CWE
References

Related vulnerabilities

CVE-2025-12106CRITICAL9.1PL ✓ten sam produkt

OpenVPN: heap buffer over-read przy parsowaniu adresów IP

CVE-2024-5594CRITICAL9.1PL ✓ten sam produkt

OpenVPN: Wstrzyknięcie danych przez nieoczyszczone wiadomości PUSH_REPLY

CVE-2023-46850CRITICAL9.8ten sam produkt

Use after free in OpenVPN version 2.6.0 to 2.6.6 may lead to undefined behavoir, leaking memory buffers or rem...

CVE-2022-0547CRITICAL9.8ten sam produkt

OpenVPN 2.1 until v2.4.12 and v2.5.6 may enable authentication bypass in external authentication plug-ins when...

CVE-2018-7544CRITICAL9.1ten sam produkt

A cross-protocol scripting issue was discovered in the management interface in OpenVPN through 2.4.5. When thi...