Primary

Context

OpenVPN PUSH_REPLY Message Injection Vulnerability in Control Channel Logging

Vulnerability

Patched

A vulnerability exists in OpenVPN versions prior to 2.6.11, where the software fails to properly sanitize PUSH_REPLY messages. This flaw allows an attacker controlling the server to inject unexpected arbitrary data into client logs. Additionally, this vulnerability could lead to a high CPU load on the client side.

Impact

Exploitation of this vulnerability can cause arbitrary data injection into client logs, potentially leading to log pollution or misuse of log information. Furthermore, according to the OpenVPN release announcement, this vulnerability could cause a high CPU load on the affected client.

Remediation

Users can upgrade to OpenVPN version 2.6.11, available for download from the OpenVPN community downloads page. Debian and Ubuntu packages can be obtained from the official APT repositories, while Red Hat derivatives can use the Fedora Copr repository.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

7.6

impact

1.9

exploitability

6.5

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.6

impact

1.9

exploitability

6.5

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

OpenVPN PUSH_REPLY Message Injection Vulnerability in Control Channel Logging

Vulnerability

Impact

Remediation

Affected Products

OpenVPN

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating