CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-31605

furlongm openvpn-monitor through 1.1.3 allows %0a command injection via the OpenVPN management interface socket. This can shut down the server via signal%20SIGTERM.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.034

EPSS Ranking 86.9%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 7.8

References

http://packetstormsecurity.com/files/164278/OpenVPN-Monitor-1.1.3-Command-Injection.html
https://github.com/furlongm/openvpn-monitor/releases
http://packetstormsecurity.com/files/164278/OpenVPN-Monitor-1.1.3-Command-Injection.html
https://github.com/furlongm/openvpn-monitor/releases

Products affected by CVE-2021-31605

Openvpn-Monitor Project » Openvpn-Monitor » Version: Any

cpe:2.3:a:openvpn-monitor_project:openvpn-monitor:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-31605

Products

Pricing

Contact Us