FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

tailscale -- Security vulnerability in the client

Affected packages
tailscale < 1.32.3

Details

VuXML ID e0f26ac5-6a17-11ed-93e7-901b0e9408dc
Discovery 2022-11-21
Entry 2022-11-22

Tailscale team reports:

A vulnerability identified in the Tailscale client allows a malicious website to access the peer API, which can then be used to access Tailscale environment variables.

References

CVE Name CVE-2022-41925
URL https://tailscale.com/security-bulletins/#ts-2022-005