Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2023-28123

A permission misconfiguration in UI Desktop for Windows (Version 0.59.1.71 and earlier) could allow an user to hijack VPN credentials while UID VPN is starting.This vulnerability is fixed in Version 0.62.3 and later.

  • Published: Apr 19, 2023
  • Updated: May 2, 2023
  • CVE: CVE-2023-28123
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.5
  • AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWEs:

Software From Fixed in
ui / desktop - 0.62.3.0