CVE-2021-31605: furlongm openvpn-monitor command injection
(updated )
furlongm openvpn-monitor through 1.1.3 allows %0a
command injection via the OpenVPN management interface socket. This can shut down the server via signal SIGTERM
.
References
Detect and mitigate CVE-2021-31605 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →