Filtered by vendor Wondershare
Subscribe
Total
21 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-24122 | 1 Wondershare | 1 Edraw | 2024-11-21 | N/A | 3.3 LOW |
| A remote code execution vulnerability in the project management of Wanxing Technology's Yitu project which allows an attacker to use the exp.adpx file as a zip compressed file to construct a special file name, which can be used to decompress the project file into the system startup folder, restart the system, and automatically execute the constructed attack script. | |||||
| CVE-2023-31748 | 1 Wondershare | 1 Mobiletrans | 2024-11-21 | N/A | 7.8 HIGH |
| Insecure permissions in MobileTrans v4.0.11 allows attackers to escalate privileges to local admin via replacing the executable file. | |||||
| CVE-2023-31747 | 1 Wondershare | 1 Filmora | 2024-11-21 | N/A | 7.8 HIGH |
| Wondershare Filmora 12 (Build 12.2.1.2088) was discovered to contain an unquoted service path vulnerability via the component NativePushService. This vulnerability allows attackers to launch processes with elevated privileges. | |||||
| CVE-2023-29835 | 1 Wondershare | 1 Dr.fone | 2024-11-21 | N/A | 7.8 HIGH |
| Insecure Permission vulnerability found in Wondershare Dr.Fone v.12.9.6 allows a remote attacker to escalate privileges via the service permission function. | |||||
| CVE-2023-27771 | 1 Wondershare | 1 Creative Centerr | 2024-11-21 | N/A | 7.8 HIGH |
| An issue found in Wondershare Technology Co.,Ltd Creative Centerr v.1.0.8 allows a remote attacker to execute arbitrary commands via the wondershareCC_setup_full10819.exe file. | |||||
| CVE-2023-27770 | 1 Wondershare | 1 Edraw-max | 2024-11-21 | N/A | 7.8 HIGH |
| An issue found in Wondershare Technology Co.,Ltd Edraw-max v.12.0.4 allows a remote attacker to execute arbitrary commands via the edraw-max_setup_full5371.exe file. | |||||
| CVE-2023-27769 | 1 Wondershare | 1 Pdf Reader | 2024-11-21 | N/A | 7.8 HIGH |
| An issue found in Wondershare Technology Co.,Ltd PDF Reader v.1.0.1 allows a remote attacker to execute arbitrary commands via the pdfreader_setup_full13143.exe file. | |||||
| CVE-2023-27768 | 1 Wondershare | 1 Pdfelement | 2024-11-21 | N/A | 7.8 HIGH |
| An issue found in Wondershare Technology Co.,Ltd PDFelement v9.1.1 allows a remote attacker to execute arbitrary commands via the pdfelement-pro_setup_full5239.exe file. | |||||
| CVE-2023-27767 | 1 Wondershare | 1 Dr.fone | 2024-11-21 | N/A | 7.8 HIGH |
| An issue found in Wondershare Technology Co.,Ltd Dr.Fone v.12.4.9 allows a remote attacker to execute arbitrary commands via the drfone_setup_full3360.exe file. | |||||
| CVE-2023-27766 | 1 Wondershare | 1 Anireel | 2024-11-21 | N/A | 7.8 HIGH |
| An issue found in Wondershare Technology Co.,Ltd Anireel 1.5.4 allows a remote attacker to execute arbitrary commands via the anireel_setup_full9589.exe file. | |||||
| CVE-2023-27765 | 1 Wondershare | 1 Recoverit | 2024-11-21 | N/A | 7.8 HIGH |
| An issue found in Wondershare Technology Co.,Ltd Recoverit v.10.6.3 allows a remote attacker to execute arbitrary commands via the recoverit_setup_full4134.exe file. | |||||
| CVE-2023-27764 | 1 Wondershare | 1 Repairit | 2024-11-21 | N/A | 7.8 HIGH |
| An issue found in Wondershare Technology Co.,Ltd Repairit v.3.5.4 allows a remote attacker to execute arbitrary commands via the repairit_setup_full5913.exe file. | |||||
| CVE-2023-27763 | 1 Wondershare | 1 Mobiletrans | 2024-11-21 | N/A | 7.8 HIGH |
| An issue found in Wondershare Technology Co.,Ltd MobileTrans v.4.0.2 allows a remote attacker to execute arbitrary commands via the mobiletrans_setup_full5793.exe file. | |||||
| CVE-2023-27762 | 1 Wondershare | 1 Democreator | 2024-11-21 | N/A | 7.8 HIGH |
| An issue found in Wondershare Technology Co., Ltd DemoCreator v.6.0.0 allows a remote attacker to execute arbitrary commands via the democreator_setup_full7743.exe file. | |||||
| CVE-2023-27761 | 1 Wondershare | 1 Uniconverter | 2024-11-21 | N/A | 7.8 HIGH |
| An issue found in Wondershare Technology Co., Ltd UniConverter v.14.0.0 allows a remote attacker to execute arbitrary commands via the uniconverter14_64bit_setup_full14204.exe file. | |||||
| CVE-2023-27760 | 1 Wondershare | 1 Filmora | 2024-11-21 | N/A | 7.8 HIGH |
| An issue found in Wondershare Technology Co, Ltd Filmora v.12.0.9 allows a remote attacker to execute arbitrary commands via the filmora_setup_full846.exe. | |||||
| CVE-2023-27759 | 1 Wondershare | 1 Edrawmind | 2024-11-21 | N/A | 7.8 HIGH |
| An issue found in Wondershare Technology Co, Ltd Edrawmind v.10.0.6 allows a remote attacker to executea arbitrary commands via the WindowsCodescs.dll file. | |||||
| CVE-2023-27010 | 1 Wondershare | 1 Dr.fone | 2024-11-21 | N/A | 7.8 HIGH |
| Wondershare Dr.Fone v12.9.6 was discovered to contain weak permissions for the service WsDrvInst. This vulnerability allows attackers to escalate privileges via modifying or overwriting the executable. | |||||
| CVE-2021-44596 | 1 Wondershare | 1 Dr.fone | 2024-11-21 | 10.0 HIGH | 9.8 CRITICAL |
| Wondershare LTD Dr. Fone as of 2021-12-06 version is affected by Remote code execution. Due to software design flaws an unauthenticated user can communicate over UDP with the "InstallAssistService.exe" service(the service is running under SYSTEM privileges) and manipulate it to execute malicious executable without any validation from a remote location and gain SYSTEM privileges | |||||
| CVE-2021-44595 | 1 Wondershare | 1 Dr.fone | 2024-11-21 | 9.0 HIGH | 8.8 HIGH |
| Wondershare Dr. Fone Latest version as of 2021-12-06 is vulnerable to Incorrect Access Control. A normal user can send manually crafted packets to the ElevationService.exe and execute arbitrary code without any validation with SYSTEM privileges. | |||||