CVE-2025-2704
Published Apr 2, 2025
Last updated 3 days ago
- Description
- OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase
- Source
- security@openvpn.net
- NVD status
- Received
- security@openvpn.net
- CWE-754
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
2
🚨 Critical #OpenVPN vulnerability (CVE-2025-2704) patched! Affects versions 2.6.1–2.6.13 w/ --tls-crypt-v2 enabled. Upgrade to 2.6.14 now to avoid server crashes. Details 👇 #CyberSecurity #InfoSec https://t.co/wjqrR0yA3b
@threatsbank
5 Apr 2025
31 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
ثغرة جديدة على OpenVPN CVE-2025-2704 الاصدارات المصابه من 2.6.1 الى 2.6.13 الثغرة يسبب إستغلالها إلى سقوط بسبب(DoS) إغلاق الثغر إما تحدث للاصدار 2.6.14 او عطل –tls-crypt-v2 https://t.co/Qw0o7CeCO0
@HereHuss
5 Apr 2025
20 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
A critical vulnerability (CVE-2025-2704) in OpenVPN servers (2.6.1 - 2.6.13) could allow denial-of-service attacks. Patch 2.6.14 fixes it, ensuring security remains intact. 🛡️ #OpenVPN #ServerSecurity #USA link: https://t.co/96qb56SZjN https://t.co/Co7v7egCxa
@TweetThreatNews
4 Apr 2025
19 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🛑 OpenVPN : une faille de sécurité (CVE-2025-2704) a été corrigée dans OpenVPN. Elle peut être utilisée pour provoquer un déni de service sur le serveur VPN. 👉 Plus d'infos sur IT-Connect : https://t.co/YcqakkiycY #OpenVPN #VPN #infosec https://t.co/YcqakkiycY
@ITConnect_fr
4 Apr 2025
563 Impressions
5 Retweets
6 Likes
2 Bookmarks
0 Replies
0 Quotes