CVE-2022-33737 is a vulnerability in Openvpn Access Server
Published on July 6, 2022
The OpenVPN Access Server installer creates a log file readable for everyone, which from version 2.10.0 and before 2.11.0 may contain a random generated admin password
Weakness Type
Incorrect Ownership Assignment
The software assigns an owner to a resource, but the owner is outside of the intended control sphere. This may allow the resource to be manipulated by actors outside of the intended control sphere.
Products Associated with CVE-2022-33737
Want to know whenever a new CVE is published for Openvpn Access Server? stack.watch will email you.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.