CVE - CVE-2019-14899

CVE-ID
CVE-2019-14899	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
A vulnerability was discovered in Linux, FreeBSD, OpenBSD, MacOS, iOS, and Android that allows a malicious access point, or an adjacent user, to determine if a connected user is using a VPN, make positive inferences about the websites they are visiting, and determine the correct sequence and acknowledgement numbers in use, allowing the bad actor to inject data into the TCP stream. This provides everything that is needed for an attacker to hijack active connections inside the VPN tunnel.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14899 CONFIRM:https://support.apple.com/kb/HT211288 CONFIRM:https://support.apple.com/kb/HT211289 CONFIRM:https://support.apple.com/kb/HT211290 CONFIRM:https://support.apple.com/kb/HT211850 CONFIRM:https://support.apple.com/kb/HT211931 FULLDISC:20200717 APPLE-SA-2020-07-15-1 iOS 13.6 and iPadOS 13.6 URL:http://seclists.org/fulldisclosure/2020/Jul/23 FULLDISC:20200717 APPLE-SA-2020-07-15-2 macOS Catalina 10.15.6, Security Update 2020-004 Mojave, Security Update 2020-004 High Sierra URL:http://seclists.org/fulldisclosure/2020/Jul/24 FULLDISC:20200717 APPLE-SA-2020-07-15-3 tvOS 13.4.8 URL:http://seclists.org/fulldisclosure/2020/Jul/25 FULLDISC:20201115 APPLE-SA-2020-11-13-3 Additional information for APPLE-SA-2020-09-16-1 iOS 14.0 and iPadOS 14.0 URL:http://seclists.org/fulldisclosure/2020/Nov/20 FULLDISC:20201215 APPLE-SA-2020-12-14-4 Additional information for APPLE-SA-2020-11-13-1 macOS Big Sur 11.0.1 URL:http://seclists.org/fulldisclosure/2020/Dec/32 MISC:https://openvpn.net/security-advisory/no-flaws-found-in-openvpn-software/ MLIST:[oss-security] 20200813 Blind in/on-path attacks against VPN-tunneled connections (CVE-2019-14899 follow-up) URL:http://www.openwall.com/lists/oss-security/2020/08/13/2 MLIST:[oss-security] 20201007 Re: [CVE-2019-14899] Inferring and hijacking VPN-tunneled TCP connections. URL:http://www.openwall.com/lists/oss-security/2020/10/07/3 MLIST:[oss-security] 20210704 Re: Blind in/on-path attacks against VPN-tunneled connections (CVE-2019-14899 follow-up) URL:http://www.openwall.com/lists/oss-security/2021/07/05/1
Assigning CNA
Red Hat, Inc.
Date Record Created
20190810	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20190810)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is a record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)