Primary

Context

OpenVPN Command Injection Vulnerability via DNS Variables in Updown Scripts

Vulnerability

Patched

A command injection vulnerability has been identified in OpenVPN versions 2.7_alpha1 through 2.7_beta1 on POSIX-based platforms. This vulnerability allows a remote authenticated server to inject shell commands by exploiting DNS variables, but only when the '--dns-updown' option is active.

Impact

Exploitation of this vulnerability could lead to arbitrary command execution on the affected system.

Remediation

Users can upgrade to OpenVPN 2.7_beta2, which includes proper input sanitation for DNS strings to mitigate this vulnerability. This version is available for download from the OpenVPN community downloads page, and packages for various Linux distributions can be found in the official OpenVPN community repositories.

Added: Oct 24, 2025, 10:22 AM

Updated: Oct 24, 2025, 1:26 PM

Vulnerability Rating

Custom Algorithm

spread

7.6

impact

2.5

exploitability

5.4

remediation

7.7

relevance

0.8

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.6

impact

2.5

exploitability

5.4

remediation

7.7

relevance

0.8

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

OpenVPN Command Injection Vulnerability via DNS Variables in Updown Scripts

Vulnerability

Impact

Remediation

Affected Products

OpenVPN

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating