CVE-2019-14899 — HIGH (7.4)

Q: How severe is CVE-2019-14899?

CVE-2019-14899 has been rated HIGH with a CVSS base score of 7.4/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2019-14899?

Check the references section above for vendor advisories and patch information. Affected products include: Freebsd Freebsd, Linux Linux Kernel, Openbsd Openbsd, Apple Ipados, Apple Iphone Os.

Vulnerability Description

A vulnerability was discovered in Linux, FreeBSD, OpenBSD, MacOS, iOS, and Android that allows a malicious access point, or an adjacent user, to determine if a connected user is using a VPN, make positive inferences about the websites they are visiting, and determine the correct sequence and acknowledgement numbers in use, allowing the bad actor to inject data into the TCP stream. This provides everything that is needed for an attacker to hijack active connections inside the VPN tunnel.

CVSS Score

7.4

HIGH

CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Freebsd	Freebsd	-
Linux	Linux Kernel	-
Openbsd	Openbsd	-
Apple	Ipados	< 13.6
Apple	Iphone Os	< 13.6
Apple	Mac Os X	< 10.15.6
Apple	Macos	11.0
Apple	Tvos	< 13.4.8

Related Weaknesses (CWE)

CWE-300

References

http://seclists.org/fulldisclosure/2020/Dec/32Mailing ListThird Party Advisory
http://seclists.org/fulldisclosure/2020/Jul/23Mailing ListThird Party Advisory
http://seclists.org/fulldisclosure/2020/Jul/24Mailing ListThird Party Advisory
http://seclists.org/fulldisclosure/2020/Jul/25Mailing ListThird Party Advisory
http://seclists.org/fulldisclosure/2020/Nov/20Mailing ListThird Party Advisory
http://www.openwall.com/lists/oss-security/2020/08/13/2Mailing ListThird Party Advisory
http://www.openwall.com/lists/oss-security/2020/10/07/3Mailing ListThird Party Advisory
http://www.openwall.com/lists/oss-security/2021/07/05/1Mailing ListThird Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14899Issue TrackingThird Party Advisory
https://openvpn.net/security-advisory/no-flaws-found-in-openvpn-software/Third Party Advisory
https://support.apple.com/kb/HT211288Third Party Advisory
https://support.apple.com/kb/HT211289Third Party Advisory
https://support.apple.com/kb/HT211290Third Party Advisory
https://support.apple.com/kb/HT211850Third Party Advisory
https://support.apple.com/kb/HT211931Third Party Advisory

FAQ

What is CVE-2019-14899?

CVE-2019-14899 is a vulnerability with a CVSS score of 7.4 (HIGH). A vulnerability was discovered in Linux, FreeBSD, OpenBSD, MacOS, iOS, and Android that allows a malicious access point, or an adjacent user, to determine if a connected user is using a VPN, make posi...

How severe is CVE-2019-14899?

CVE-2019-14899 has been rated HIGH with a CVSS base score of 7.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2019-14899?

Check the references section above for vendor advisories and patch information. Affected products include: Freebsd Freebsd, Linux Linux Kernel, Openbsd Openbsd, Apple Ipados, Apple Iphone Os.