Memory Buffer Overflow Vulnerability in tap-windows6 Driver
CVE-2024-1305

Currently unrated

Key Information:

Vendor

Openvpn
Status
Tap-windows6
Openvpn-gui
Vendor
CVE Published:
8 July 2024

What is CVE-2024-1305?

tap-windows6 driver version 9.26 and earlier does not properly check the size data of incomming write operations which an attacker can use to overflow memory buffers, resulting in a bug check and potentially arbitrary code execution in kernel space

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

OpenVPN-GUI Windows 2.6.9 and earlier

tap-windows6 Windows 9.26 or earlier

References

https://community.openvpn.net/openvpn/wiki/CVE-2024-1305
https://www.mail-archive.com/openvpn-users@lists.sourcefo...

EPSS Score

8% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

JSON
.