CVE-2019-14899

Name: CVE-2019-14899
Creator: NVD / NIST
Published: 2019-12-11T15:15:14.263+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 7.4/10EPSS 0.84%

Last modified Jun 17, 2026

CVE-2019-14899 is a high-severity vulnerability rated 7.4/10 on the CVSS scale. A vulnerability was discovered in Linux, FreeBSD, OpenBSD, MacOS, iOS, and Android that allows a malicious access point, or an adjacent user, to determine if a connected user is using a VPN, make positive inferences about the websites they are visiting, and determine the correct sequence and acknowledgement numbers in use, allowing the bad actor to inject data into the TCP stream. This provides everything that is needed for an attacker to hijack active connections inside the VPN tunnel.. EPSS estimates a 0.84% chance of exploitation in the next 30 days.

Description

A vulnerability was discovered in Linux, FreeBSD, OpenBSD, MacOS, iOS, and Android that allows a malicious access point, or an adjacent user, to determine if a connected user is using a VPN, make positive inferences about the websites they are visiting, and determine the correct sequence and acknowledgement numbers in use, allowing the bad actor to inject data into the TCP stream. This provides everything that is needed for an attacker to hijack active connections inside the VPN tunnel.

Metrics

CVSS 3.1

7.4/10

CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

EPSS Probability

0.84%

53.1th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-300

Affected Software

Vendor	Product	Versions
Freebsd	Freebsd	All versions
Linux	Linux Kernel	All versions
Openbsd	Openbsd	All versions
Apple	Ipados	< 13.6
Apple	Iphone Os	< 13.6
Apple	Mac Os X	< 10.15.6
Apple	Macos	11.0
Apple	Tvos	< 13.4.8

References

http://seclists.org/fulldisclosure/2020/Dec/32Mailing List, Third Party Advisory
http://seclists.org/fulldisclosure/2020/Jul/23Mailing List, Third Party Advisory
http://seclists.org/fulldisclosure/2020/Jul/24Mailing List, Third Party Advisory
http://seclists.org/fulldisclosure/2020/Jul/25Mailing List, Third Party Advisory
http://seclists.org/fulldisclosure/2020/Nov/20Mailing List, Third Party Advisory
http://www.openwall.com/lists/oss-security/2020/08/13/2Mailing List, Third Party Advisory
http://www.openwall.com/lists/oss-security/2020/10/07/3Mailing List, Third Party Advisory
http://www.openwall.com/lists/oss-security/2021/07/05/1Mailing List, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14899Issue Tracking, Third Party Advisory
https://openvpn.net/security-advisory/no-flaws-found-in-openvpn-software/Third Party Advisory
https://support.apple.com/kb/HT211288Third Party Advisory
https://support.apple.com/kb/HT211289Third Party Advisory
https://support.apple.com/kb/HT211290Third Party Advisory
https://support.apple.com/kb/HT211850Third Party Advisory
https://support.apple.com/kb/HT211931Third Party Advisory
http://seclists.org/fulldisclosure/2020/Dec/32Mailing List, Third Party Advisory
http://seclists.org/fulldisclosure/2020/Jul/23Mailing List, Third Party Advisory
http://seclists.org/fulldisclosure/2020/Jul/24Mailing List, Third Party Advisory
http://seclists.org/fulldisclosure/2020/Jul/25Mailing List, Third Party Advisory
http://seclists.org/fulldisclosure/2020/Nov/20Mailing List, Third Party Advisory
http://www.openwall.com/lists/oss-security/2020/08/13/2Mailing List, Third Party Advisory
http://www.openwall.com/lists/oss-security/2020/10/07/3Mailing List, Third Party Advisory
http://www.openwall.com/lists/oss-security/2021/07/05/1Mailing List, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14899Issue Tracking, Third Party Advisory
https://openvpn.net/security-advisory/no-flaws-found-in-openvpn-software/Third Party Advisory
https://support.apple.com/kb/HT211288Third Party Advisory
https://support.apple.com/kb/HT211289Third Party Advisory
https://support.apple.com/kb/HT211290Third Party Advisory
https://support.apple.com/kb/HT211850Third Party Advisory
https://support.apple.com/kb/HT211931Third Party Advisory

Timeline

Published: Dec 11, 2019
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2019-14899?

How severe is CVE-2019-14899?

CVE-2019-14899 has a CVSS score of 7.4/10 (HIGH severity). The EPSS model estimates a 0.84% probability of exploitation in the next 30 days.

How do I fix CVE-2019-14899?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-14899?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST