Lucene search

MitreCVE-2023-35838

HistoryAug 09, 2023 - 11:15 p.m.

CVE-2023-35838

2023-08-0923:15:10

CWE-610

mitre

web.nvd.nist.gov

cve-2023-35838

wireguard

windows

vpn

security

firewall

ip addresses

CVSS3

5.7

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

5.4

Confidence

High

EPSS

0.001

Percentile

19.6%

JSON

The WireGuard client 0.5.3 on Windows insecurely configures the operating system and firewall such that traffic to a local network that uses non-RFC1918 IP addresses is blocked. This allows an adversary to trick the victim into blocking IP traffic to selected IP addresses and services even while the VPN is enabled. NOTE: the tunnelcrack.mathyvanhoef.com website uses this CVE ID to refer more generally to “LocalNet attack resulting in the blocking of traffic” rather than to only WireGuard.

Affected configurations

Nvd

Node

wireguardwireguardMatch0.5.3

AND

microsoftwindowsMatch-

VendorProductVersionCPE
wireguardwireguard0.5.3cpe:2.3:a:wireguard:wireguard:0.5.3:*:*:*:*:*:*:*
microsoftwindows-cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
wireguard	wireguard	0.5.3	cpe:2.3:a:wireguard:wireguard:0.5.3:::::::*
microsoft	windows	-	cpe:2.3:o:microsoft:windows:-:::::::*

References

psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0015

tunnelcrack.mathyvanhoef.com/details.html

wireguard.com

Social References

CVSS3

5.7

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

5.4

Confidence

High

EPSS

0.001

Percentile

19.6%

JSON

Related for CVE-2023-35838