UI Desktop for Windows: VPN Credential Hijacking Vulnerability

UI Desktop for Windows: VPN Credential Hijacking Vulnerability

CVE-2023-28123 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

A permission misconfiguration in UI Desktop for Windows (Version 0.59.1.71 and earlier) could allow an user to hijack VPN credentials while UID VPN is starting.This vulnerability is fixed in Version 0.62.3 and later.

Learn more about our Cis Benchmark Audit For Desktop Software.