What the vulnerability does

01Description

OpenVPN before 2.6.11 does not santize PUSH_REPLY messages properly which an attacker controlling the server can use to inject unexpected arbitrary data ending up in client logs.

Key dates

02Disclosure timeline

January 6, 2025 CVE published
November 3, 2025 Record updated