OpenVPN Access Server 2.7.2 through 3.1.0 accepts bare line-feed sequences inside HTTP header values, allowing remote attackers to perform HTTP request smuggling when deployed behind a reverse proxy
Metrics
Affected Vendors & Products
References
| Link | Providers |
|---|---|
| https://openvpn.net/as-docs/as-3-2-release-notes.html |
|
History
Wed, 08 Jul 2026 17:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Wed, 08 Jul 2026 16:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | OpenVPN Access Server 2.7.2 through 3.1.0 accepts bare line-feed sequences inside HTTP header values, allowing remote attackers to perform HTTP request smuggling when deployed behind a reverse proxy | |
| Weaknesses | CWE-444 | |
| References |
| |
| Metrics |
cvssV4_0
|
Status: PUBLISHED
Assigner: OpenVPN
Published:
Updated: 2026-07-08T16:30:47.077Z
Reserved: 2025-04-02T07:56:08.672Z
Link: CVE-2025-3110
Updated: 2026-07-08T16:30:04.925Z
No data.
No data.
OpenCVE Enrichment
No data.