PT-2023-22597 · Cyberghost · Cyberghostvpn Windows Client
Ceri Coburn
·
Published
2023-05-06
·
Updated
2023-05-16
·
CVE-2023-30237
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
CyberGhostVPN Windows Client versions prior to 8.3.10.10015
Description
A DLL injection issue was found in the Dashboard.exe component of the CyberGhostVPN Windows Client.
Recommendations
For versions prior to 8.3.10.10015, update to version 8.3.10.10015 or later to resolve the issue.
Exploit
Fix
Uncontrolled Search Path Element
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cyberghostvpn Windows Client