SB20240620213 - Multiple vulnerabilities in OpenVPN for Windows

Security Bulletin ID SB20240620213

Severity

Low

Patch available

YES

Number of vulnerabilities 3

Exploitation vector Remote access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 3 secuirty vulnerabilities.

1) Resource exhaustion (CVE-ID: CVE-2024-5594)

The vulnerability allows a remote peer to perform a denial of service (DoS) attack.

The vulnerability exists due to application accepts control channel messages with nonprintable characters. A remote peer can send garbage to openvpn log, or cause high CPU load.

2) Permissions, Privileges, and Access Controls (CVE-ID: CVE-2024-4877)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to application does not properly impose security restrictions on the service pipe. A local user with SeImpersonatePrivilege permissions can open the pipe a second time, tricking openvn GUI into providing user credentials (tokens), and gain full access to the account used by openvpn-gui.exe.

3) Resource management error (CVE-ID: CVE-2024-28882)

The vulnerability allows a remote user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper management of internal resources within the application. A remote authenticated client can make the server "keep the session" even when the server has been told to disconnect this client.

Remediation

Install update from vendor's website.

References

https://github.com/OpenVPN/openvpn/releases/tag/v2.6.11