CVE-2026-0257 - Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of Palo Alto Networks

CVE-2026-0248 - An improper certificate validation vulnerability in the Prisma Access Agent® for Android and Chrome

CVE-2026-44343 - WGDashboard is a dashboard for WireGuard VPN. Prior to 4.3.2, there are critical vulnerabilities aff

CVE-2026-45182 - GrapheneOS before 2026050400 allows attackers to discover the real IP address of a VPN user as a con

CVE-2026-41070 - openvpn-auth-oauth2 is a plugin/management interface client for OpenVPN server to handle an OIDC bas

CVE-2026-43254 - In the Linux kernel, the following vulnerability has been resolved: ovpn: tcp - fix packet extracti

CVE-2026-31893 - Tunnelblick is an open source graphic user interface for OpenVPN on macOS. In versions 3.3beta26 thr

CVE-2025-42611 - RouterOS provides various services that rely on correct verification of client and server certificat

CVE-2025-58074 - A privilege escalation vulnerability exists during the installation of Norton Secure VPN via the Mic

CVE-2026-7674 - A flaw has been found in Shenzhen Libituo Technology LBT-T300-HW1 up to 1.2.8. This issue affects th

CVE-2026-7288 - A vulnerability has been found in D-Link DIR-825M 1.1.12. This vulnerability affects the function su

CVE-2026-7242 - A vulnerability was determined in Totolink A8000RU 7.1cu.643_b20200521. Impacted is the function set

CVE-2026-7240 - A vulnerability has been found in Totolink A8000RU 7.1cu.643_b20200521. This vulnerability affects t

CVE-2026-7037 - A security flaw has been discovered in Totolink A8000RU 7.1cu.643_b20200521. This issue affects the

CVE-2026-6644 - A command injection vulnerability was found in the PPTP VPN Clients on the ADM. The vulnerability al

CVE-2026-6643 - A stack-based buffer overflow vulnerability was found in the VPN Clients on the ADM. The issue stems

CVE-2026-6139 - A vulnerability has been found in Totolink A7100RU 7.4cu.2313_b20191024. This affects the function U

CVE-2021-47961 - A plaintext storage of a password vulnerability in Synology SSL VPN Client before 1.4.5-0684 allows

CVE-2021-47960 - A files or directories accessible to external parties vulnerability in Synology SSL VPN Client befor

CVE-2026-6029 - A vulnerability was detected in Totolink A7100RU 7.4cu.2313_b20191024. The affected element is the f

CVE-2026-33780 - A Missing Release of Memory after Effective Lifetime vulnerability in the Layer 2 Address Learning D

CVE-2026-33778 - An Improper Validation of Syntactic Correctness of Input vulnerability in the IPsec library used by

CVE-2026-4116 - Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authent

CVE-2026-4114 - Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authent

CVE-2026-4113 - An observable response discrepancy vulnerability in the SonicWall SMA1000 series appliances allows a

CVE-2024-1490 - An authenticated remote attacker with high privileges can exploit the OpenVPN configuration via the

CVE-2026-5850 - A vulnerability was identified in Totolink A7100RU 7.4cu.2313_b20191024. This affects the function s

CVE-2026-30817 - An external configuration control vulnerability in the OpenVPN module of TP-Link AX53 v1.0 allows an

CVE-2026-30816 - An external control of configuration vulnerability in the OpenVPN module of TP-Link AX53 v1.0 allows

CVE-2026-30815 - An OS command injection vulnerability in the OpenVPN module of TP-Link Archer AX53 v1.0 allows an au

CVE-2026-39312 - SoftEtherVPN is a an open-source cross-platform multi-protocol VPN Program. In 5.2.5188 and earlier,

CVE-2018-25241 - VPN Browser+ 1.1.0.0 contains a denial of service vulnerability that allows unauthenticated attacker

CVE-2018-25239 - Smart VPN 1.1.3.0 contains a denial of service vulnerability that allows local attackers to crash th

CVE-2021-4477 - Hirschmann HiLCOS OpenBAT and BAT450 products contain a firewall bypass vulnerability in IPv6 IPsec

CVE-2026-5355 - A vulnerability has been found in Trendnet TEW-657BRM 1.00.1. Affected by this issue is the function

CVE-2026-5354 - A flaw has been found in Trendnet TEW-657BRM 1.00.1. Affected by this vulnerability is the function

CVE-2026-34821 - Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark para

CVE-2026-34819 - Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the REMARK para

CVE-2026-34810 - Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark para

CVE-2026-34796 - Endian Firewall version 3.3.25 and prior allow authenticated users to execute arbitrary OS commands

CVE-2026-26352 - Smoothwall Express versions prior to 3.1 Update 13 contain a stored cross-site scripting vulnerabili

CVE-2026-5107 - A vulnerability has been found in FRRouting FRR up to 10.5.1. This affects the function process_type

CVE-2026-5105 - A vulnerability was detected in Totolink A3300R 17.0.0cu.557_b20221024. The affected element is the

CVE-2026-34391 - Fleet is open source device management software. Prior to 4.81.1, a vulnerability in Fleet's Windows

CVE-2026-30976 - Sonarr is a PVR for Usenet and BitTorrent users. In versions on the 4.x branch prior to 4.0.17.2950,

CVE-2026-30975 - Sonarr is a PVR for Usenet and BitTorrent users. Versions prior to 4.0.16.2942 have an authenticatio

CVE-2026-20012 - A vulnerability in the Internet Key Exchange version 2 (IKEv2) feature of Cisco IOS Software, Cisco

CVE-2026-4368 - Race Condition in NetScaler ADC and NetScaler Gateway when appliance is configured as Gateway (SSL V

CVE-2019-25572 - NordVPN 6.19.6 contains a denial of service vulnerability that allows local attackers to crash the a

CVE-2026-20106 - A vulnerability in the Remote Access SSL VPN, HTTP management and MUS functionality, of Cisco Secure

CVE-2026-20105 - A vulnerability in the Remote Access SSL VPN functionality of Cisco Secure Firewall Adaptive Securit

CVE-2026-20103 - A vulnerability in the Remote Access SSL VPN functionality of Cisco Secure Firewall Adaptive Securit

CVE-2026-20100 - A vulnerability in the LUA interperter of the Remote Access SSL VPN feature of Cisco Secure Firewall

CVE-2026-20082 - A vulnerability in the handling of the embryonic connection limits in Cisco Secure Firewall Adaptive

CVE-2026-20070 - A vulnerability in the VPN web services component of Cisco Secure Firewall Adaptive Security Applian

CVE-2026-20069 - A vulnerability in the VPN web services component of Cisco Secure Firewall Adaptive Security Applian

CVE-2026-20049 - A vulnerability in the processing of Galois/Counter Mode (GCM)-encrypted Internet Key Exchange versi

CVE-2026-20039 - A vulnerability in the VPN web server of Cisco Secure Firewall Adaptive Security Appliance (ASA) Sof

CVE-2026-20014 - A vulnerability in the IKEv2 feature of Cisco Secure Firewall ASA Software and Cisco Secure FTD Soft

CVE-2026-25963 - Fleet is open source device management software. In versions prior to 4.80.1, a broken authorization

CVE-2026-27899 - WireGuard Portal (or wg-portal) is a web-based configuration portal for WireGuard server management.

CVE-2026-20051 - A vulnerability with the Ethernet VPN (EVPN) Layer 2 ingress packet processing of Cisco Nexus 3600 P

CVE-2026-2961 - A vulnerability has been found in D-Link DWR-M960 1.01.07. This affects the function sub_4196C4 of t

CVE-2026-2738 - Buffer overflow in ovpn‑dco‑win version 2.8.0 allows local attackers to cause a system crash by send

CVE-2026-25998 - strongMan is a management interface for strongSwan, an OpenSource IPsec-based VPN. When storing cred

CVE-2019-25430 - Comodo Dome Firewall 2.7.0 contains a reflected cross-site scripting vulnerability that allows unaut

CVE-2019-25429 - Comodo Dome Firewall 2.7.0 contains a reflected cross-site scripting vulnerability that allows attac

CVE-2019-25428 - Comodo Dome Firewall 2.7.0 contains multiple reflected cross-site scripting vulnerabilities in the o

CVE-2019-25422 - Comodo Dome Firewall 2.7.0 contains cross-site scripting vulnerabilities that allow attackers to inj

CVE-2026-2670 - A vulnerability was identified in Advantech WISE-6610 1.2.1_20251110. Affected is an unknown functio

CVE-2019-25398 - IPFire 2.21 Core Update 127 contains multiple cross-site scripting vulnerabilities in the ovpnmain.c

CVE-2026-26732 - TOTOLINK A3002RU V2.1.1-B20211108.1455 was discovered to contain a stack-based buffer overflow via t

CVE-2026-2550 - A vulnerability was found in EFM iptime A6004MX 14.18.2. Affected is the function commit_vpncli_file

CVE-2026-2542 - A weakness has been identified in Total VPN 0.5.29.0 on Windows. Affected by this vulnerability is a

CVE-2019-25374 - OPNsense 19.1 contains a reflected cross-site scripting vulnerability that allows attackers to injec