Vulnerability Details CVE-2023-50446
An issue was discovered in Mullvad VPN Windows app before 2023.6-beta1. Insufficient permissions on a directory allow any local unprivileged user to escalate privileges to SYSTEM.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 20.9%
CVSS Severity
CVSS v3 Score 7.8
References
- https://github.com/mullvad/mullvadvpn-app/pull/5398
- https://github.com/mullvad/mullvadvpn-app/releases/tag/2023.6
- https://github.com/mullvad/mullvadvpn-app/releases/tag/2023.6-beta1
- https://github.com/mullvad/mullvadvpn-app/pull/5398
- https://github.com/mullvad/mullvadvpn-app/releases/tag/2023.6
- https://github.com/mullvad/mullvadvpn-app/releases/tag/2023.6-beta1
Products affected by CVE-2023-50446
-
cpe:2.3:a:mullvad:mullvad_vpn:2017.1
-
cpe:2.3:a:mullvad:mullvad_vpn:2018.1
-
cpe:2.3:a:mullvad:mullvad_vpn:2018.2
-
cpe:2.3:a:mullvad:mullvad_vpn:2018.3
-
cpe:2.3:a:mullvad:mullvad_vpn:2018.4
-
cpe:2.3:a:mullvad:mullvad_vpn:2018.5
-
cpe:2.3:a:mullvad:mullvad_vpn:2018.6
-
cpe:2.3:a:mullvad:mullvad_vpn:2019.1
-
cpe:2.3:a:mullvad:mullvad_vpn:2019.10
-
cpe:2.3:a:mullvad:mullvad_vpn:2019.2
-
cpe:2.3:a:mullvad:mullvad_vpn:2019.3
-
cpe:2.3:a:mullvad:mullvad_vpn:2019.4
-
cpe:2.3:a:mullvad:mullvad_vpn:2019.5
-
cpe:2.3:a:mullvad:mullvad_vpn:2019.6
-
cpe:2.3:a:mullvad:mullvad_vpn:2019.7
-
cpe:2.3:a:mullvad:mullvad_vpn:2019.8
-
cpe:2.3:a:mullvad:mullvad_vpn:2019.9
-
cpe:2.3:a:mullvad:mullvad_vpn:2020.1
-
cpe:2.3:a:mullvad:mullvad_vpn:2020.2
-
cpe:2.3:a:mullvad:mullvad_vpn:2020.3
-
cpe:2.3:a:mullvad:mullvad_vpn:2020.4
-
cpe:2.3:a:mullvad:mullvad_vpn:2020.5
-
cpe:2.3:a:mullvad:mullvad_vpn:2020.6
-
cpe:2.3:a:mullvad:mullvad_vpn:2020.7
-
cpe:2.3:a:mullvad:mullvad_vpn:2020.8
-
cpe:2.3:a:mullvad:mullvad_vpn:2021.1
-
cpe:2.3:a:mullvad:mullvad_vpn:2021.2
-
cpe:2.3:a:mullvad:mullvad_vpn:2021.3
-
cpe:2.3:a:mullvad:mullvad_vpn:2021.4
-
cpe:2.3:a:mullvad:mullvad_vpn:2021.5
-
cpe:2.3:a:mullvad:mullvad_vpn:2021.6
-
cpe:2.3:a:mullvad:mullvad_vpn:2022.1
-
cpe:2.3:a:mullvad:mullvad_vpn:2022.2
-
cpe:2.3:a:mullvad:mullvad_vpn:2022.3
-
cpe:2.3:a:mullvad:mullvad_vpn:2022.4
-
cpe:2.3:a:mullvad:mullvad_vpn:2022.5
-
cpe:2.3:a:mullvad:mullvad_vpn:2023.1
-
cpe:2.3:a:mullvad:mullvad_vpn:2023.2
-
cpe:2.3:a:mullvad:mullvad_vpn:2023.3
-
cpe:2.3:a:mullvad:mullvad_vpn:2023.4
-
cpe:2.3:a:mullvad:mullvad_vpn:2023.5