CVE-2020-11810

EPSS 2.36% · P85 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-11810

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

An issue was discovered in OpenVPN 2.4.x before 2.4.9. An attacker can inject a data channel v2 (P_DATA_V2) packet using a victim's peer-id. Normally such packets are dropped, but if this packet arrives before the data channel crypto parameters have been initialized, the victim's connection will be dropped. This requires careful timing due to the small time window (usually within a few seconds) between the victim client connection starting and the server PUSH_REPLY response back to the client. This attack will only work if Negotiable Cipher Parameters (NCP) is in use.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

OpenVPN 竞争条件问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

OpenVPN是美国OpenVPN公司的一个用于创建虚拟专用网络（VPN）加密通道的软件包，它使用OpenSSL库来加密数据与控制信息，并允许创建的VPN使用公开密钥、电子证书或者用户名/密码来进行身份验证。 OpenVPN 2.4.9之前的2.4.x版本中存在安全漏洞。攻击者可利用该漏洞导致拒绝服务。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2020-11810

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-11810

请登录查看更多情报信息。

https://bugzilla.suse.com/show_bug.cgi?id=1169925x_refsource_CONFIRM
https://community.openvpn.net/openvpn/ticket/1272x_refsource_CONFIRM
https://patchwork.openvpn.net/patch/1079/x_refsource_CONFIRM
https://security-tracker.debian.org/tracker/CVE-2020-11810x_refsource_MISC
https://github.com/OpenVPN/openvpn/commit/37bc691e7d26ea4eb61a8a434ebd7a9ae76225abx_refsource_CONFIRM
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FGHHV4YZANZW45KZTJJGVGPFMSXYRCKZ/vendor-advisoryx_refsource_FEDORA
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JII7RYYYRBPQNEGGVSOXCM7JUZ43T3VH/vendor-advisoryx_refsource_FEDORA
https://lists.debian.org/debian-lts-announce/2022/05/msg00002.htmlmailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2020-11810

Same Patch Batch · n/a · 2020-04-27 · 65 CVEs total

CVE-2018-21155		多款NETGEAR产品跨站脚本漏洞
CVE-2018-21176		多款NETGEAR产品缓冲区错误漏洞
CVE-2018-21179		多款NETGEAR产品缓冲区错误漏洞
CVE-2018-21178		多款NETGEAR产品缓冲区错误漏洞
CVE-2018-21177		多款NETGEAR产品缓冲区错误漏洞
CVE-2018-21167		多款NETGEAR产品跨站脚本漏洞
CVE-2018-21159		NETGEAR ReadyNAS OS 安全漏洞
CVE-2018-21158		NETGEAR R7800 安全漏洞
CVE-2018-21157		多款NETGEAR产品操作系统命令注入漏洞
CVE-2018-21156		多款NETGEAR产品缓冲区错误漏洞
CVE-2018-21168		多款NETGEAR产品信息泄露漏洞
CVE-2018-21154		多款NETGEAR产品操作系统命令注入漏洞
CVE-2018-21153		多款NETGEAR产品缓冲区错误漏洞
CVE-2018-21152		多款NETGEAR产品操作系统命令注入漏洞
CVE-2018-21149		多款NETGEAR产品缓冲区错误漏洞
CVE-2018-21100		NETGEAR R7800 操作系统命令注入漏洞
CVE-2018-21099		NETGEAR R7800 操作系统命令注入漏洞
CVE-2018-21098		NETGEAR R7800 操作系统命令注入漏洞
CVE-2020-11941		Opmantek Open-AudIT 操作系统命令注入漏洞
CVE-2019-15234		SHAREit 资源管理错误漏洞

Showing top 20 of 65 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2020-11810

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-11810

I. Basic Information for CVE-2020-11810

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-11810

III. Intelligence Information for CVE-2020-11810

Same Patch Batch · n/a · 2020-04-27 · 65 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-11810

Leave a comment