PT-2023-22597 · Cyberghost · Cyberghostvpn Windows Client

Ceri Coburn

·

Publicado

2023-05-06

·

Atualizado

2023-05-16

·

CVE-2023-30237

CVSS v3.1

7.8

Alta

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions CyberGhostVPN Windows Client versions prior to 8.3.10.10015
Description A DLL injection issue was found in the Dashboard.exe component of the CyberGhostVPN Windows Client.
Recommendations For versions prior to 8.3.10.10015, update to version 8.3.10.10015 or later to resolve the issue.

Exploit

Correção

Uncontrolled Search Path Element

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-427

Identificadores relacionados

CVE-2023-30237

Produtos afetados

Cyberghostvpn Windows Client