CVE-2025-50054 Information

Description

Buffer overflow in OpenVPN ovpn-dco-win version 1.3.0 and earlier and version 2.5.8 and earlier allows a local user process to send a too large control message buffer to the kernel driver resulting in a system crash

Reference

https://community.openvpn.net/Downloads#openvpn-27_alpha2-released-19-june-2025 https://community.openvpn.net/Security%20Announcements/CVE-2025-50054

Related CNNVD

CNNVD-202506-2632 (Published: 2025-06-20)