CVE-2025-2704 Information

Description

OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase

Reference

https://community.openvpn.net/openvpn/wiki/CVE-2025-2704