CVE-2013-2692

2014-05-1314:00:00

flexera

www.cve.org

AI Score

7.1

Confidence

Low

EPSS

0.002

Percentile

52.5%

JSON

Cross-site request forgery (CSRF) vulnerability in the Admin web interface in OpenVPN Access Server before 1.8.5 allows remote attackers to hijack the authentication of administrators for requests that create administrative users.

References

openvpn.net/index.php/access-server/download-openvpn-as-sw/531-release-notes-v185.html

osvdb.org/93111

secunia.com/advisories/52802