OpenVPN AS Improper Authentication Vulnerability - CVE-2020-8953 - Vulnerability Database

OpenVPN AS Improper Authentication Vulnerability - CVE-2020-8953

Critical

Reference: CVE-2020-8953

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-8953

Title: OpenVPN AS Improper Authentication Vulnerability

Overview:

OpenVPN Access Server 2.8.x before 2.8.1 allows LDAP authentication bypass (except when a user is enrolled in two-factor authentication).