Improper usage of symmetric encryption in UI Desktop for Windows (Version 0.59.1.71 and earlier) could allow users with access to UI Desktop configuration files to decrypt their content.This vulnerability is fixed in Version 0.62.3 and later.
References
Link | Resource |
---|---|
https://community.ui.com/releases/Security-Advisory-Bulletin-029-029/a47c68f2-1f3a-47c3-b577-eb70599644e4 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: hackerone
Published: 2023-04-19T00:00:00
Updated: 2023-04-19T00:00:00
Reserved: 2023-03-10T00:00:00
Link: CVE-2023-28124
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-04-19T20:15:12.247
Modified: 2023-05-01T20:26:12.633
Link: CVE-2023-28124
JSON object: View
Redhat Information
No data.
CWE