#VU82576 Externally Controlled Reference to a Resource in Another Sphere in WireGuard for Windows
Vulnerability identifier: #VU82576
Vulnerability risk: Medium
CVSSv3.1: 4 [CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:U/RC:C]
CVE-ID:
CWE-ID:
CWE-610
Exploitation vector: Local network
Exploit availability: No
Vulnerable software:
WireGuard for Windows
Client/Desktop applications /
Other client software
Vendor: WireGuard
Description
The vulnerability allows a remote attacker to block access to certain resources.
The vulnerability exists due to the way WireGuard handles non-RFC1918 IP addresses. A remote attacker can trick the victim into blocking IP traffic to selected IP addresses and services even while the VPN is enabled.
Mitigation
Cybersecurity Help is currently unaware of any official solution to address this vulnerability.
Vulnerable software versions
WireGuard for Windows: 0.0.1 - 0.5.3
External links
http://tunnelcrack.mathyvanhoef.com/details.html
http://wireguard.com
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
