CVE-2024-8474 – OpenVPN Connect Private Key Disclosure Vulnerability

1月 6, 2025
4:17 pm

CVE ID : CVE-2024-8474

Published : Jan. 6, 2025, 3:15 p.m. | 1 hour, 2 minutes ago

Description : OpenVPN Connect before version 3.5.0 can contain the configuration profile’s clear-text private key which is logged in the application log, which an unauthorized actor can use to decrypt the VPN traffic

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-8474 – OpenVPN Connect Private Key Disclosure Vulnerability

Elvescore.io

Recent Posts

CVE-2018-4301 – Gemalto Buffer Overflow

CVE-2025-22132 – WeGIA Charitable Institutions XSS File Upload Vulnerability

CVE-2025-22133 – WeGIA File Upload Vulnerability (Remote Code Execution)

CVE-2024-10541 – Apache X509 Certificate Parsing Remote Code Execution

CVE-2022-41572 – EyesOfNetwork EON Privilege Escalation Vulnerability

CVE-2022-41573 – Ovidentia Image Upload RCE Vulnerability

CVE-2024-8474 – OpenVPN Connect Private Key Disclosure Vulnerability

CVE-2024-8474 – OpenVPN Connect Private Key Disclosure Vulnerability