CVE-2025-3908 in 3 Linuxinfo

Zusammenfassung

von MITRE • 19.05.2025

The configuration initialization tool in OpenVPN 3 Linux v20 through v24 on Linux allows a local attacker to use symlinks pointing at an arbitrary directory which will change the ownership and permissions of that destination directory.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Zuständig

OpenVPN

Reservieren

23.04.2025

Veröffentlichung

19.05.2025

Moderieren

akzeptiert

Eintrag

VDB-309559

CPE

bereit

EPSS

0.00182

KEV

nein

Aktivitäten

very low

Quellen

Interested in the pricing of exploits?

See the underground prices here!