Rewterz Threat Advisory – CVE-2021-3824 – OpenVPN Access Server Vulnerability

Rewterz Threat Alert – SNAKE Ransomware – Active IOCs

September 24, 2021

Rewterz Threat Advisory – Multiple VMware vCenter Vulnerabilities

September 26, 2021

Rewterz Threat Advisory – CVE-2021-3824 – OpenVPN Access Server Vulnerability

Severity

Medium

Analysis Summary

CVE-2021-3824

OpenVPN Access Server is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the web login page URL. A remote attacker could exploit this vulnerability using a specially-crafted URL to execute script in a victim’s Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim’s cookie-based authentication credentials.

Impact

Cross-Site Scripting

Affected Vendors

OpenVPN

Affected Products

OpenVPN Access Server 2.9.0
OpenVPN Access Server 2.9.1
OpenVPN Access Server 2.9.2
OpenVPN Access Server 2.9.3
OpenVPN Access Server 2.9.4

Remediation

Upgrade to the latest version of OpenVPN Access Server, available from the OpenVPN Web site.

Access Server Release Notes

Rewterz Threat Alert – SNAKE Ransomware – Active IOCs

Rewterz Threat Advisory – Multiple VMware vCenter Vulnerabilities

Rewterz Threat Advisory – CVE-2021-3824 – OpenVPN Access Server Vulnerability

Severity

Analysis Summary

CVE-2021-3824

Impact

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan