OpenVPN plug-ins on Windows with OpenVPN 2.6.9 and earlier could be loaded from any directory, which allows an attacker to load an arbitrary plug-in which can be used to interact with the privileged OpenVPN interactive service.
https://thehackernews.com/2024/08/microsoft-reveals-four-openvpn-flaws.html
https://www.mail-archive.com/[email protected]/msg07534.html