{"api_version":"1","generated_at":"2026-06-24T16:31:07+00:00","cve":"CVE-2023-46850","urls":{"html":"https://cve.report/CVE-2023-46850","api":"https://cve.report/api/cve/CVE-2023-46850.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2023-46850","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2023-46850"},"summary":{"title":"CVE-2023-46850","description":"Use after free in OpenVPN version 2.6.0 to 2.6.6 may lead to undefined behavoir, leaking memory buffers or remote execution when sending network buffers to a remote peer.","state":"PUBLISHED","assigner":"OpenVPN","published_at":"2023-11-11 01:15:07","updated_at":"2026-06-23 22:16:30"},"problem_types":["CWE-416","CWE-416 CWE-416 Use After Free"],"metrics":[{"version":"3.1","source":"nvd@nist.gov","type":"Primary","score":"9.8","severity":"CRITICAL","vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","data":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"}}],"references":[{"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L3FS46ANNTAVLIQY56ZKGM5CBTRVBUNE/","name":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L3FS46ANNTAVLIQY56ZKGM5CBTRVBUNE/","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List"],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://openvpn.net/security-advisory/access-server-security-update-cve-2023-46849-cve-2023-46850/","name":"https://openvpn.net/security-advisory/access-server-security-update-cve-2023-46849-cve-2023-46850/","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"],"title":"Access Server Security Update (CVE-2023-46849, CVE-2023-46850) | OpenVPN","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://community.openvpn.net/openvpn/wiki/CVE-2023-46850","name":"https://community.openvpn.net/openvpn/wiki/CVE-2023-46850","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"],"title":"Just a moment...","mime":"text/html","httpstatus":"403","archivestatus":"404"},{"url":"https://www.debian.org/security/2023/dsa-5555","name":"https://www.debian.org/security/2023/dsa-5555","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"],"title":"","mime":"","httpstatus":"200","archivestatus":"200"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/O54I7D753V6PU6XBU26FEROD2DSHEJQ4/","name":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/O54I7D753V6PU6XBU26FEROD2DSHEJQ4/","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.cve.org/CVERecord?id=CVE-2023-46850","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-46850","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"OpenVPN","product":"OpenVPN 2 (Community)","version":"affected 2.6.0 2.6.6 minor release","platforms":[]},{"source":"CNA","vendor":"OpenVPN","product":"Access Server","version":"affected 2.11.0 2.11.3 patch release","platforms":["Linux"]},{"source":"CNA","vendor":"OpenVPN","product":"Access Server","version":"affected 2.12.0 2.12.2 patch release","platforms":["Linux"]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2023","cve_id":"46850","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"debian","cpe5":"debian_linux","cpe6":"12.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2023","cve_id":"46850","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"fedoraproject","cpe5":"fedora","cpe6":"39","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2023","cve_id":"46850","vulnerable":"1","versionEndIncluding":"2.6.6","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openvpn","cpe5":"openvpn","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"community","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2023","cve_id":"46850","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openvpn","cpe5":"openvpn_access_server","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2023","cve_id":"46850","vulnerable":"1","versionEndIncluding":"2.11.3","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"openvpn","cpe5":"openvpn_access_server","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":{"cve_year":"2023","cve_id":"46850","cve":"CVE-2023-46850","epss":"0.019820000","percentile":"0.779770000","score_date":"2026-06-23","updated_at":"2026-06-24 00:09:24"},"legacy_qids":[{"cve":"CVE-2023-46850","qid":"199892","title":"Ubuntu Security Notification for Open Virtual Private Network (OpenVPN) Vulnerabilities (USN-6484-1)"},{"cve":"CVE-2023-46850","qid":"284773","title":"Fedora Security Update for Open Virtual Private Network (OpenVPN) (FEDORA-2023-e4df33666c)"},{"cve":"CVE-2023-46850","qid":"285135","title":"Fedora Security Update for Open Virtual Private Network (OpenVPN) (FEDORA-2023-d9d55a0bfc)"},{"cve":"CVE-2023-46850","qid":"503553","title":"Alpine Linux Security Update for Open Virtual Private Network (OpenVPN)"},{"cve":"CVE-2023-46850","qid":"505913","title":"Alpine Linux Security Update for openvpn"},{"cve":"CVE-2023-46850","qid":"6000327","title":"Debian Security Update for Open Virtual Private Network (OpenVPN) (DSA 5555-1)"},{"cve":"CVE-2023-46850","qid":"691358","title":"Free Berkeley Software Distribution (FreeBSD) Security Update for Open Virtual Private Network (OpenVPN) (2fe004f5-83fd-11ee-9f5d-31909fb2f495)"},{"cve":"CVE-2023-46850","qid":"92096","title":"Open Virtual Private Network (OpenVPN) Community Edition Multiple Security Vulnerabilities"}]},"source_records":{"cve_program":{"containers":{"adp":[{"providerMetadata":{"dateUpdated":"2024-08-02T20:53:21.910Z","orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE"},"references":[{"tags":["x_transferred"],"url":"https://community.openvpn.net/openvpn/wiki/CVE-2023-46850"},{"tags":["x_transferred"],"url":"https://openvpn.net/security-advisory/access-server-security-update-cve-2023-46849-cve-2023-46850/"},{"tags":["x_transferred"],"url":"https://www.debian.org/security/2023/dsa-5555"},{"tags":["x_transferred"],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L3FS46ANNTAVLIQY56ZKGM5CBTRVBUNE/"},{"tags":["x_transferred"],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/O54I7D753V6PU6XBU26FEROD2DSHEJQ4/"}],"title":"CVE Program Container"},{"metrics":[{"other":{"content":{"id":"CVE-2023-46850","options":[{"Exploitation":"none"},{"Automatable":"yes"},{"Technical Impact":"total"}],"role":"CISA Coordinator","timestamp":"2025-08-15T14:59:47.646924Z","version":"2.0.3"},"type":"ssvc"}}],"providerMetadata":{"dateUpdated":"2025-12-16T18:23:24.266Z","orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP"},"title":"CISA ADP Vulnrichment"}],"cna":{"affected":[{"defaultStatus":"unaffected","product":"OpenVPN 2 (Community)","vendor":"OpenVPN","versions":[{"lessThanOrEqual":"2.6.6","status":"affected","version":"2.6.0","versionType":"minor release"}]},{"defaultStatus":"unaffected","platforms":["Linux"],"product":"Access Server","vendor":"OpenVPN","versions":[{"lessThanOrEqual":"2.11.3","status":"affected","version":"2.11.0","versionType":"patch release"},{"lessThanOrEqual":"2.12.2","status":"affected","version":"2.12.0","versionType":"patch release"}]}],"descriptions":[{"lang":"en","value":"Use after free in OpenVPN version 2.6.0 to 2.6.6 may lead to undefined behavoir, leaking memory buffers or remote execution when sending network buffers to a remote peer."}],"problemTypes":[{"descriptions":[{"cweId":"CWE-416","description":"CWE-416 Use After Free","lang":"en","type":"CWE"}]}],"providerMetadata":{"dateUpdated":"2026-06-23T21:24:00.414Z","orgId":"36a55730-e66d-4d39-8ca6-3c3b3017965e","shortName":"OpenVPN"},"references":[{"url":"https://community.openvpn.net/openvpn/wiki/CVE-2023-46850"},{"url":"https://openvpn.net/security-advisory/access-server-security-update-cve-2023-46849-cve-2023-46850/"}],"x_generator":{"engine":"cvelib 1.8.0"}}},"cveMetadata":{"assignerOrgId":"36a55730-e66d-4d39-8ca6-3c3b3017965e","assignerShortName":"OpenVPN","cveId":"CVE-2023-46850","datePublished":"2023-11-11T00:15:07.076Z","dateReserved":"2023-10-27T13:38:49.496Z","dateUpdated":"2026-06-23T21:24:00.414Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.2"},"nvd":{"publishedDate":"2023-11-11 01:15:07","lastModifiedDate":"2026-06-23 22:16:30","problem_types":["CWE-416","CWE-416 CWE-416 Use After Free"],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2025-08-15T14:59:47.646924Z","id":"CVE-2023-46850","options":[{"exploitation":"none"},{"automatable":"yes"},{"technicalImpact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openvpn:openvpn:*:*:*:*:community:*:*:*","versionStartIncluding":"2.6.0","versionEndIncluding":"2.6.6","matchCriteriaId":"3A398A7A-395F-4CA8-9D72-1DDD337D5074"},{"vulnerable":true,"criteria":"cpe:2.3:a:openvpn:openvpn_access_server:*:*:*:*:*:*:*:*","versionStartIncluding":"2.11.0","versionEndIncluding":"2.11.3","matchCriteriaId":"54464223-5988-40E7-B94B-D7B8DE999704"},{"vulnerable":true,"criteria":"cpe:2.3:a:openvpn:openvpn_access_server:*:*:*:*:*:*:*:*","versionStartIncluding":"2.12.0","versionEndExcluding":"2.12.2","matchCriteriaId":"2B8D0B4E-A0BF-4A33-9031-987D8BD45F65"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:12.0:*:*:*:*:*:*:*","matchCriteriaId":"46D69DCC-AE4D-4EA5-861C-D60951444C6C"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*","matchCriteriaId":"B8EDB836-4E6A-4B71-B9B2-AA3E03E0F646"}]}]}]},"legacy_mitre":{"record":{"CveYear":"2023","CveId":"46850","Ordinal":"1","Title":"CVE-2023-46850","CVE":"CVE-2023-46850","Year":"2023"},"notes":[{"CveYear":"2023","CveId":"46850","Ordinal":"1","NoteData":"Use after free in OpenVPN version 2.6.0 to 2.6.6 may lead to undefined behavoir, leaking memory buffers or remote execution when sending network buffers to a remote peer.","Type":"Description","Title":"CVE-2023-46850"}]}}}