Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2025-3110

OpenVPN Access Server 2.7.2 through 3.1.0 accepts bare line-feed sequences inside HTTP header values, allowing remote attackers to perform HTTP request smuggling when deployed behind a reverse proxy
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 17.3%
CVSS Severity
CVSS v3 Score 7.5
Products affected by CVE-2025-3110


Contact Us

Shodan ® - All rights reserved