CVE-2023-28123
CVSS V2 None
CVSS V3 None
Description
A permission misconfiguration in UI Desktop for Windows (Version 0.59.1.71 and earlier) could allow an user to hijack VPN credentials while UID VPN is starting.This vulnerability is fixed in Version 0.62.3 and later.
Overview
- CVE ID
- CVE-2023-28123
- Assigner
- support@hackerone.com
- Vulnerability Status
- Awaiting Analysis
- Published Version
- 2023-04-19T20:15:12
- Last Modified Date
- 2023-04-20T13:15:13
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://community.ui.com/releases/Security-Advisory-Bulletin-029-029/a47c68f2-1f3a-47c3-b577-eb70599644e4 |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-28123 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28123 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2023-04-19 21:02:34 | Added to TrackCVE | |||
| 2023-04-19 21:02:36 | Weakness Enumeration | new | ||
| 2023-04-20 14:01:54 | 2023-04-20T13:15:13 | CVE Modified Date | updated | |
| 2023-04-20 14:01:54 | Received | Awaiting Analysis | Vulnerability Status | updated |