OpenVPN AS Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2013-2692 - Vulnerability Database

OpenVPN AS Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2013-2692

Medium

Reference: CVE-2013-2692

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2013-2692

Title: OpenVPN AS Cross-Site Request Forgery (CSRF) Vulnerability

Overview:

Cross-site request forgery (CSRF) vulnerability in the Admin web interface in OpenVPN Access Server before 1.8.5 allows remote attackers to hijack the authentication of administrators for requests that create administrative users.