CVE-2010-3903

Published: Oct 14, 2010Modified: Apr 29, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Unspecified vulnerability in OpenConnect before 2.23 allows remote AnyConnect SSL VPN servers to cause a denial of service (application crash) via a 404 HTTP status code.

Affected (13)

Products: Infradead: Openconnect

Infradead

1 product

Openconnect

Configuration A

13 vulnerable

Vulnerable Software	Affected Versions
Infradead Openconnect	Up to 2.22
Infradead Openconnect	Version 1.00
Infradead Openconnect	Version 1.10
Infradead Openconnect	Version 1.20
Infradead Openconnect	Version 1.30
Infradead Openconnect	Version 1.40
Infradead Openconnect	Version 2.00
Infradead Openconnect	Version 2.01
Infradead Openconnect	Version 2.10
Infradead Openconnect	Version 2.11
Infradead Openconnect	Version 2.12
Infradead Openconnect	Version 2.20
Infradead Openconnect	Version 2.21

References (2)

http://www.infradead.org/openconnect.html

Source: cve@mitre.org

http://www.infradead.org/openconnect.html

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.