OpenVPN


OpenVPN Audits Yield Mixed Bag

The results of two audits of the open source software OpenVPN were shared late last week. One found two legitimate vulnerabilities, the other said the service is cryptographically “solid.”


OpenVPN is advising users of its Desktop Client to upgrade as soon as possible to avoid attacks against a CSRF vulnerability that can allow remote code execution. The vulnerability lies in a product that the company no longer supports and considers obsolete. An attacker could exploit the vulnerability if a user running a vulnerable version visits […]

Subscribe to our newsletter, Threatpost Today!

Get the latest breaking news delivered daily to your inbox.