CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-13454

Weak encryption algorithm in Easy-RSA version 3.0.5 through 3.1.7 allows a local attacker to more easily bruteforce the private CA key when created using OpenSSL 3

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 0.9%

CVSS Severity

CVSS v3 Score 5.3

References

https://community.openvpn.net/openvpn/wiki/CVE-2024-13454

Products affected by CVE-2024-13454

Openvpn » Easy-Rsa » Version: 3.0.5

cpe:2.3:a:openvpn:easy-rsa:3.0.5
Openvpn » Easy-Rsa » Version: 3.0.6

cpe:2.3:a:openvpn:easy-rsa:3.0.6
Openvpn » Easy-Rsa » Version: 3.0.7

cpe:2.3:a:openvpn:easy-rsa:3.0.7
Openvpn » Easy-Rsa » Version: 3.0.8

cpe:2.3:a:openvpn:easy-rsa:3.0.8
Openvpn » Easy-Rsa » Version: 3.0.9

cpe:2.3:a:openvpn:easy-rsa:3.0.9
Openvpn » Easy-Rsa » Version: 3.1.0

cpe:2.3:a:openvpn:easy-rsa:3.1.0
Openvpn » Easy-Rsa » Version: 3.1.1

cpe:2.3:a:openvpn:easy-rsa:3.1.1
Openvpn » Easy-Rsa » Version: 3.1.2

cpe:2.3:a:openvpn:easy-rsa:3.1.2
Openvpn » Easy-Rsa » Version: 3.1.3

cpe:2.3:a:openvpn:easy-rsa:3.1.3
Openvpn » Easy-Rsa » Version: 3.1.4

cpe:2.3:a:openvpn:easy-rsa:3.1.4
Openvpn » Easy-Rsa » Version: 3.1.5

cpe:2.3:a:openvpn:easy-rsa:3.1.5
Openvpn » Easy-Rsa » Version: 3.1.6

cpe:2.3:a:openvpn:easy-rsa:3.1.6
Openvpn » Easy-Rsa » Version: 3.1.7

cpe:2.3:a:openvpn:easy-rsa:3.1.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-13454

Products

Pricing

Contact Us