CVE-2021-3824 is a vulnerability in Openvpn Access Server
Published on September 23, 2021

OpenVPN Access Server 2.9.0 through 2.9.4 allow remote attackers to inject arbitrary web script or HTML via the web login page URL.

NVD

Weakness Type

Improper Neutralization of Encoded URI Schemes in a Web Page

The web application improperly neutralizes user-controlled input for executable script disguised with URI encodings.

Products Associated with CVE-2021-3824

Want to know whenever a new CVE is published for Openvpn Access Server? stack.watch will email you.

Openvpn Access Server

Exploit Probability

EPSS

0.30%

Percentile

53.36%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-3824 is a vulnerability in Openvpn Access ServerPublished on September 23, 2021

Weakness Type

Improper Neutralization of Encoded URI Schemes in a Web Page

Products Associated with CVE-2021-3824

Exploit Probability

CVE-2021-3824 is a vulnerability in Openvpn Access Server
Published on September 23, 2021