CVE-2023-50446
- Source
- https://cve.org/CVERecord?id=CVE-2023-50446
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-50446.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2023-50446
- Published
- 2023-12-10T17:15:07.070Z
- Modified
- 2026-04-10T05:11:48.388034Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
An issue was discovered in Mullvad VPN Windows app before 2023.6-beta1. Insufficient permissions on a directory allow any local unprivileged user to escalate privileges to SYSTEM.
- References
Affected packages
Git / github.com/mullvad/mullvadvpn-app
Affected versions
2017.*
2017.1-alpha4
2017.1-alpha5
2017.1-beta1
2017.1-beta2
2017.1-beta3
2017.1-beta4
2018.*
2018.1-beta8
2018.1-beta9
2018.2-beta1
2018.2-beta2
2018.2-beta3
2018.3
2018.3-beta1
2018.4-beta1
2018.4-beta2
2018.6-beta1
2019.*
2019.10-beta1
2019.10-beta2
2019.2-beta1
2019.7
2019.7-beta1
2019.8
2019.8-beta1
2019.9
2019.9-beta1
2020.*
2020.4-beta1
2020.4-beta2
2020.5-beta1
2020.5-beta2
android/2023.*
android/2023.1
android/2023.1-beta1
android/2023.1-beta2
android/2023.2
android/2023.3
android/2023.4
android/2023.5
ios/2020.*
ios/2020.1
ios/2020.2
ios/2020.3
ios/2020.4
ios/2020.5
ios/2021.*
ios/2021.1
ios/2021.2
ios/2021.3
ios/2021.4
ios/2022.*
ios/2022.1
ios/2022.2
ios/2022.3
ios/2022.3-build1
ios/2022.3-build2
ios/2023.*
ios/2023.1
ios/2023.1-build5