CVE-2020-8953: OpenVPN vulnerability

OpenVPN Access Server 2.8.x before 2.8.1 allows LDAP authentication bypass (except when a user is enrolled in two-factor authentication).

References

  • openvpn.net/security-advisories/
  • Share this information