Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-7k7e-z4tf-6uc4
Vulnerability ID VCID-7k7e-z4tf-6uc4
Aliases CVE-2023-46850
Summary Multiple vulnerabilities have been discovered in OpenVPN, the worst of which could lead to information disclosure.
Status Published
Exploitability None
Weighted Severity None
Risk None
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-416 Use After Free
System Score Found at
epss 0.02037 https://api.first.org/data/v1/epss?cve=CVE-2023-46850
epss 0.02037 https://api.first.org/data/v1/epss?cve=CVE-2023-46850
epss 0.02037 https://api.first.org/data/v1/epss?cve=CVE-2023-46850
epss 0.02037 https://api.first.org/data/v1/epss?cve=CVE-2023-46850
epss 0.02037 https://api.first.org/data/v1/epss?cve=CVE-2023-46850
epss 0.02037 https://api.first.org/data/v1/epss?cve=CVE-2023-46850
epss 0.02037 https://api.first.org/data/v1/epss?cve=CVE-2023-46850
epss 0.02037 https://api.first.org/data/v1/epss?cve=CVE-2023-46850
epss 0.02037 https://api.first.org/data/v1/epss?cve=CVE-2023-46850
epss 0.02037 https://api.first.org/data/v1/epss?cve=CVE-2023-46850
epss 0.02037 https://api.first.org/data/v1/epss?cve=CVE-2023-46850
epss 0.02037 https://api.first.org/data/v1/epss?cve=CVE-2023-46850
epss 0.02037 https://api.first.org/data/v1/epss?cve=CVE-2023-46850
epss 0.02037 https://api.first.org/data/v1/epss?cve=CVE-2023-46850
ssvc Track https://community.openvpn.net/openvpn/wiki/CVE-2023-46850
ssvc Track https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L3FS46ANNTAVLIQY56ZKGM5CBTRVBUNE/
ssvc Track https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/O54I7D753V6PU6XBU26FEROD2DSHEJQ4/
ssvc Track https://openvpn.net/security-advisory/access-server-security-update-cve-2023-46849-cve-2023-46850/
ssvc Track https://www.debian.org/security/2023/dsa-5555
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2023-46850
1055805 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055805
access-server-security-update-cve-2023-46849-cve-2023-46850 https://openvpn.net/security-advisory/access-server-security-update-cve-2023-46849-cve-2023-46850/
CVE-2023-46850 https://community.openvpn.net/openvpn/wiki/CVE-2023-46850
dsa-5555 https://www.debian.org/security/2023/dsa-5555
GLSA-202409-08 https://security.gentoo.org/glsa/202409-08
L3FS46ANNTAVLIQY56ZKGM5CBTRVBUNE https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L3FS46ANNTAVLIQY56ZKGM5CBTRVBUNE/
O54I7D753V6PU6XBU26FEROD2DSHEJQ4 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/O54I7D753V6PU6XBU26FEROD2DSHEJQ4/
USN-6484-1 https://usn.ubuntu.com/6484-1/
No exploits are available.
Vector: SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-08-15T14:59:47Z/ Found at https://community.openvpn.net/openvpn/wiki/CVE-2023-46850
Vector: SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-08-15T14:59:47Z/ Found at https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L3FS46ANNTAVLIQY56ZKGM5CBTRVBUNE/
Vector: SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-08-15T14:59:47Z/ Found at https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/O54I7D753V6PU6XBU26FEROD2DSHEJQ4/
Vector: SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-08-15T14:59:47Z/ Found at https://openvpn.net/security-advisory/access-server-security-update-cve-2023-46849-cve-2023-46850/
Vector: SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-08-15T14:59:47Z/ Found at https://www.debian.org/security/2023/dsa-5555
Exploit Prediction Scoring System (EPSS)
Percentile 0.83767
EPSS Score 0.02037
Published At April 2, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:12:28.944724+00:00 Gentoo Importer Import https://security.gentoo.org/glsa/202409-08 38.0.0