How severe is CVE-2023-22308?

CVE-2023-22308 has a CVSS v3 score of 7.5 (HIGH).

CVE-2023-22308

Name: vpn
Author: softether

7.5HIGH

An integer underflow vulnerability exists in the vpnserver OvsProcessData functionality of SoftEther VPN 5.01.9674 and 5.02. A specially crafted network packet can lead to denial of service. An attack

Published: 10/12/2023Updated: 11/21/2024

Description

An integer underflow vulnerability exists in the vpnserver OvsProcessData functionality of SoftEther VPN 5.01.9674 and 5.02. A specially crafted network packet can lead to denial of service. An attacker can send a malicious packet to trigger this vulnerability.

AI AnalysisPowered by AI

Affected Products

softethervpn

5.01.9674

softethervpn

5.02

References

https://talosintelligence.com/vulnerability_reports/TALOS-2023-1737
ExploitThird Party Advisory
https://talosintelligence.com/vulnerability_reports/TALOS-2023-1737
ExploitThird Party Advisory
https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1737