Microsoft's disclosure article reports they cooperated to work a patch in March. It was already patched months ago when the article was was published.
There's nothing to suggest this vulnerability was ever exploited in the wild. This is also to do mostly with OpenVPN's own software which they have across multiple platforms rather than us.
final [GrapheneOS] 📱👁️🗨️
npub1c9…7sqfm
2024-08-11 17:37:57
in reply to nevent1q…86jm
Author Public Key
npub1c9d95evcdeatgy6dacats5j5mfw96jcyu79579kg9qm3jtf42xzs07sqfmPublished at
2024-08-11 17:37:57Event JSON
{
"id": "00ebf3aa39325148358078d1791868cca5c3f6d4f3b70b660d70b986d5b5dcab",
"pubkey": "c15a5a65986e7ab4134dee3ab85254da5c5d4b04e78b4f16c82837192d355185",
"created_at": 1723397877,
"kind": 1,
"tags": [
[
"e",
"504cdf4deac3135cc77af1908a10da803803d393fe6d60d2f93003d2a54e12a5",
"",
"root"
],
[
"e",
"2f42014164d90c5cf4fe65ef9af98d0733ecf8bde6d96d44edd3bc4496ddee7b",
"",
"reply"
],
[
"p",
"97a403640c83ac12bce556ded8db2f3ebe891801832fa1114abda73a6ae8598c"
],
[
"p",
"c15a5a65986e7ab4134dee3ab85254da5c5d4b04e78b4f16c82837192d355185"
],
[
"p",
"3c6abbd464be07a16903dbfd2db475c628e6fdee4aacc845bbe60be2a5954853"
]
],
"content": "Microsoft's disclosure article reports they cooperated to work a patch in March. It was already patched months ago when the article was was published. \n\nThere's nothing to suggest this vulnerability was ever exploited in the wild. This is also to do mostly with OpenVPN's own software which they have across multiple platforms rather than us.",
"sig": "76ee388282a22f9f48bcdaa0a648757177606f8c35a00e355afb506d607e0e09b2f99d67b3781940dcd9d5eacf5da90bf54a4b3b53f66ecf284304cb74b8067a"
}