CVE-2023-7224 | OpenVPN Connect up to 3.4.6 on macOS Environment Variable DYLD_INSERT_LIBRARIES neutralization of directives
A vulnerability, which was classified as problematic, was found in OpenVPN Connect up to 3.4.6 on macOS. This affects an unknown part of the component Environment Variable Handler. The manipulation of the argument DYLD_INSERT_LIBRARIES leads to improper neutralization of directives in dynamically evaluated code (‘eval injection’).
This vulnerability is uniquely identified as CVE-2023-7224. The attack needs to be approached locally. There is no exploit available.