PT-2021-9733 · Openvpn · Openvpn Connect
Published
2021-03-30
·
Updated
2021-04-06
·
CVE-2020-15075
CVSS v3.1
7.1
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
OpenVPN Connect installer for macOS version 3.2.6 and older
Description
The issue allows the corruption of system critical files that the installer should not have access to, via symlinks in /tmp.
Recommendations
For OpenVPN Connect installer for macOS version 3.2.6 and older, update to a version newer than 3.2.6 to resolve the issue.
Fix
Link Following
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Openvpn Connect