CVE-2025-13751

Name
CVE-2025-13751
Description
Interactive service agent in OpenVPN version 2.5.0 through 2.6.16 and 2.7_alpha1 through 2.7_rc2 on Windows allows a local authenticated user to connect to the service and trigger an error causing a local denial of service.
NVD Severity
unknown
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
vendor-advisory https://community.openvpn.net/Security%20Announcements/CVE-2025-13751
release-notes https://www.mail-archive.com/openvpn-announce@lists.sourceforge.net/msg00153.html
release-notes https://www.mail-archive.com/openvpn-announce@lists.sourceforge.net/msg00154.htmlhttps://
security@openvpn.net https://www.mail-archive.com/openvpn-announce@lists.sourceforge.net/msg00154.html

Match rules

CPE URI Source package Min version Max version
openvpn >= 2.5.0 <= 2.7_rc2

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
openvpn edge-main 2.6.17-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.6.16-r1 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.6.16-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.6.14-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.6.13-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.6.12-r1 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.6.12-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.6.11-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.6.10-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.6.9-r1 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.6.9-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.6.8-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.6.7-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.6.6-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.6.5-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.6.4-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.6.3-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.6.2-r1 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.6.2-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.6.1-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.6.0-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.5.8-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.5.7-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.5.6-r1 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.5.6-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.5.5-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.5.4-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.5.3-r1 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.5.3-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn edge-main 2.5.2-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
openvpn 3.23-main 2.6.16-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
openvpn 3.22-main 2.6.16-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
openvpn 3.22-main 2.6.14-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
openvpn 3.22-main 2.6.11-r0 None possibly vulnerable
openvpn 3.22-main 2.6.7-r0 None possibly vulnerable
openvpn 3.22-main 2.5.6-r0 None possibly vulnerable
openvpn 3.22-main 2.5.2-r0 None possibly vulnerable
openvpn 3.21-main 2.6.16-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
openvpn 3.21-main 2.6.14-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
openvpn 3.21-main 2.6.12-r1 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
openvpn 3.21-main 2.6.11-r0 None possibly vulnerable
openvpn 3.21-main 2.6.7-r0 None possibly vulnerable
openvpn 3.21-main 2.5.6-r0 None possibly vulnerable
openvpn 3.21-main 2.5.2-r0 None possibly vulnerable
openvpn 3.20-main 2.6.16-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
openvpn 3.20-main 2.6.11-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
openvpn 3.20-main 2.6.10-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
openvpn 3.20-main 2.6.7-r0 None possibly vulnerable
openvpn 3.20-main 2.5.6-r0 None possibly vulnerable
openvpn 3.20-main 2.5.2-r0 None possibly vulnerable
openvpn 3.19-main 2.6.16-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
openvpn 3.19-main 2.6.11-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
openvpn 3.19-main 2.6.8-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
openvpn 3.19-main 2.6.7-r0 None possibly vulnerable
openvpn 3.19-main 2.5.6-r0 None possibly vulnerable
openvpn 3.19-main 2.5.2-r0 None possibly vulnerable