Vulnerability Database

301,409

Total vulnerabilities in the database

CVE-2023-7224

OpenVPN Connect version 3.0 through 3.4.6 on macOS allows local users to execute code in external third party libraries using the DYLD_INSERT_LIBRARIES environment variable

Published: Jan 8, 2024
Updated: Jan 12, 2024
CVE: CVE-2023-7224
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-94

Affected Software
References

Software	From	Fixed in
openvpn / connect	3.0.0	3.4.6.x

https://openvpn.net/vpn-server-resources/openvpn-connect-for-macos-change-log/

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo