■■■■■ OpenVPN Vulnerability Let Attackers Crash Servers & Execute Remote Code.
CVE-2025-2704, affects OpenVPN versions 2.6.1 through 2.6.13 when configured with the –tls-crypt-v2 option, a feature commonly used to enhance privacy and prevent deep packet inspection (DPI).
https://community.openvpn.net/openvpn/wiki/Downloads#OpenVPN2.6.14–Released02April2025
OpenVPN Vulnerability Let Attackers Crash Servers & Execute Remote Code