CVE-2021-3824
N/A
N/A
Summary
OpenVPN Access Server 2.9.0 through 2.9.4 allow remote attackers to inject arbitrary web script or HTML via the web login page URL.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | OpenVPN Access Server | 2.9.0 through 2.9.4 | affected |
Weaknesses
- CWE-84: CWE-84: Improper Neutralization of Encoded URI Schemes in a Web Page
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.