Vulnerabilities

CVE-2021-3547

by Fred · 12/07/2021

OpenVPN 3 Core Library version 3.6 and 3.6.1 allows a man-in-the-middle attacker to bypass the certificate authentication by issuing an unrelated server certificate using the same hostname found in the verify-x509-name option in a client configuration.

Date published : 2021-07-12

https://community.openvpn.net/openvpn/wiki/CVE-2021-3547

https://community.openvpn.net/openvpn/wiki/SecurityAnnouncements

Similar

Tags: Cybersecurity Alert