CNNVD-202506-2632 Information

CNNVD ID

CNNVD-202506-2632

Related CVE

CVE-2025-50054

• CNNVD Published: 2025-06-20

Description (Chinese)

OpenVPN ovpn-dco-win是OpenVPN公司的一款Windows上的虚拟网络适配器。 OpenVPN ovpn-dco-win 1.3.0及之前版本和2.5.8及之前版本存在安全漏洞，该漏洞源于内核驱动缓冲区溢出，可能导致系统崩溃。

Description (English)

OpenVPN ovpn-dco-win is a virtual network adapter on Windows from OpenVPN. OpenVPN ovpn-dco-win 1.3.0 and previous and 2.5.8 and previous versions have security loopholes, which stem from the spilling of a nuclear-driven buffer zone and could lead to a system collapse.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

OpenVPN

Published

2025-06-20

Last Modified

2026-02-24

References

https://community.openvpn.net/Security%20Announcements/CVE-2025-50054 https://community.openvpn.net/Downloads#openvpn-27_alpha2-released-19-june-2025 https://access.redhat.com/security/cve/cve-2025-50054 https://nvd.nist.gov/vuln/detail/CVE-2025-50054

Patch

https://github.com/OpenVPN/ovpn-dco-win/releases