38 matches found
CVE-2022-35257
A local privilege escalation vulnerability in UI Desktop for Windows Version 0.55.1.2 and earlier allows a malicious actor with local access to a Windows device with UI Desktop to run arbitrary commands as SYSTEM...
EUVD-2023-31834
Malicious code in bioql PyPI...
EUVD-2022-38148
Malicious code in bioql PyPI...
EUVD-2023-31835
Malicious code in bioql PyPI...
EUVD-2023-31833
Malicious code in bioql PyPI...
CVE-2023-28122
A local privilege escalation LPE vulnerability in UI Desktop for Windows Version 0.59.1.71 and earlier allows a malicious actor with local access to a Windows device running said application to submit arbitrary commands as SYSTEM.This vulnerability is fixed in Version 0.62.3 and later...
CVE-2023-28124
Improper usage of symmetric encryption in UI Desktop for Windows Version 0.59.1.71 and earlier could allow users with access to UI Desktop configuration files to decrypt their content.This vulnerability is fixed in Version 0.62.3 and later...
CVE-2023-28123
A permission misconfiguration in UI Desktop for Windows Version 0.59.1.71 and earlier could allow an user to hijack VPN credentials while UID VPN is starting.This vulnerability is fixed in Version 0.62.3 and later...
CVE-2023-28123
A permission misconfiguration in UI Desktop for Windows Version 0.59.1.71 and earlier could allow an user to hijack VPN credentials while UID VPN is starting.This vulnerability is fixed in Version 0.62.3 and later...
CVE-2023-28122
A local privilege escalation LPE vulnerability in UI Desktop for Windows Version 0.59.1.71 and earlier allows a malicious actor with local access to a Windows device running said application to submit arbitrary commands as SYSTEM.This vulnerability is fixed in Version 0.62.3 and later...
CVE-2023-28122
A local privilege escalation LPE vulnerability in UI Desktop for Windows Version 0.59.1.71 and earlier allows a malicious actor with local access to a Windows device running said application to submit arbitrary commands as SYSTEM.This vulnerability is fixed in Version 0.62.3 and later...
CVE-2023-28124
Improper usage of symmetric encryption in UI Desktop for Windows Version 0.59.1.71 and earlier could allow users with access to UI Desktop configuration files to decrypt their content.This vulnerability is fixed in Version 0.62.3 and later...
CVE-2023-28123
A permission misconfiguration in UI Desktop for Windows Version 0.59.1.71 and earlier could allow an user to hijack VPN credentials while UID VPN is starting.This vulnerability is fixed in Version 0.62.3 and later...
Design/Logic Flaw
Improper usage of symmetric encryption in UI Desktop for Windows Version 0.59.1.71 and earlier could allow users with access to UI Desktop configuration files to decrypt their content.This vulnerability is fixed in Version 0.62.3 and later...
Design/Logic Flaw
A local privilege escalation LPE vulnerability in UI Desktop for Windows Version 0.59.1.71 and earlier allows a malicious actor with local access to a Windows device running said application to submit arbitrary commands as SYSTEM.This vulnerability is fixed in Version 0.62.3 and later...
Design/Logic Flaw
A permission misconfiguration in UI Desktop for Windows Version 0.59.1.71 and earlier could allow an user to hijack VPN credentials while UID VPN is starting.This vulnerability is fixed in Version 0.62.3 and later...
PT-2023-21581 · Unknown · Ui Desktop For Windows
Name of the Vulnerable Software and Affected Versions: UI Desktop for Windows versions 0.59.1.71 and earlier Description: A permission misconfiguration could allow a user to hijack VPN credentials while UID VPN is starting. Recommendations: For versions 0.59.1.71 and earlier, update to version...
CVE-2023-28124
Improper usage of symmetric encryption in UI Desktop for Windows Version 0.59.1.71 and earlier could allow users with access to UI Desktop configuration files to decrypt their content.This vulnerability is fixed in Version 0.62.3 and later...
CVE-2023-28123
UI Desktop for Windows versions 0.59.1.71 and earlier contains a permission misconfiguration that could allow a user to hijack VPN credentials during UID VPN startup. The issue is fixed in version 0.62.3 and later. Affected component: UI Desktop (Windows). Root cause: improper permission handling...
CVE-2023-28122
CVE-2023-28122 describes a local privilege escalation in UI Desktop for Windows versions 0.59.1.71 and earlier . An attacker with local access can submit arbitrary commands as SYSTEM . The vulnerability is addressed by upgrading to version 0.62.3 or later. The initial description notes the impact...