How severe is CVE-2023-35838?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.7 out of 10.

What type of vulnerability is CVE-2023-35838?

This is classified as CWE-610, which is a common weakness in software security.

CVE-2023-35838 - MEDIUM Severity | CVSS 5.7

Vulnerability Description

The WireGuard client 0.5.3 on Windows insecurely configures the operating system and firewall such that traffic to a local network that uses non-RFC1918 IP addresses is blocked. This allows an adversary to trick the victim into blocking IP traffic to selected IP addresses and services even while the VPN is enabled. NOTE: the tunnelcrack.mathyvanhoef.com website uses this CVE ID to refer more generally to "LocalNet attack resulting in the blocking of traffic" rather than to only WireGuard.

Related Vulnerabilities

CVE-2020-8226

MEDIUM

CVSS:5.8(Medium)

A vulnerability exists in phpBB <v3.2.10 and <v3.3.1 which allowed remote image dimensions check to be used to SSRF.

CWE-6102020

CVE-2024-7625

MEDIUM

CVSS:5.8(Medium)

In HashiCorp Nomad and Nomad Enterprise from 0.6.1 up to 1.6.13, 1.7.10, and 1.8.2, the archive unpacking process is vulnerable to writes outside the allocation directory during migration of allocatio...

CWE-6102024

CVE-2023-44209

MEDIUM

CVSS:5.6(Medium)

Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build 29051.

CWE-6102023

CVE-2017-0211

MEDIUM

CVSS:5.5(Medium)

An elevation of privilege vulnerability exists in Windows 10, Windows 8.1, Windows RT 8.1, Windows Server 2012, Windows Server 2012 R2, and Windows Server 2016 versions of Microsoft Windows OLE when i...

CWE-6102017

CVE-2019-15468

MEDIUM

CVSS:5.5(Medium)

The Xiaomi Mi A2 Lite Android device with a build fingerprint of xiaomi/daisy/daisy_sprout:9/PKQ1.180917.001/V10.0.3.0.PDLMIXM:user/release-keys contains a pre-installed app with a package name of com...

CWE-6102019

CVE-2019-15472

MEDIUM

CVSS:5.5(Medium)

CWE-6102019