Search
Search Results (33 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-27760 | 1 Wondershare | 1 Filmora | 2025-02-13 | 7.8 High |
| An issue found in Wondershare Technology Co, Ltd Filmora v.12.0.9 allows a remote attacker to execute arbitrary commands via the filmora_setup_full846.exe. | ||||
| CVE-2023-27771 | 1 Wondershare | 1 Creative Centerr | 2025-02-13 | 7.8 High |
| An issue found in Wondershare Technology Co.,Ltd Creative Centerr v.1.0.8 allows a remote attacker to execute arbitrary commands via the wondershareCC_setup_full10819.exe file. | ||||
| CVE-2023-27769 | 1 Wondershare | 1 Pdf Reader | 2025-02-13 | 7.8 High |
| An issue found in Wondershare Technology Co.,Ltd PDF Reader v.1.0.1 allows a remote attacker to execute arbitrary commands via the pdfreader_setup_full13143.exe file. | ||||
| CVE-2023-27768 | 1 Wondershare | 1 Pdfelement | 2025-02-13 | 7.8 High |
| An issue found in Wondershare Technology Co.,Ltd PDFelement v9.1.1 allows a remote attacker to execute arbitrary commands via the pdfelement-pro_setup_full5239.exe file. | ||||
| CVE-2023-27767 | 1 Wondershare | 1 Dr.fone | 2025-02-13 | 7.8 High |
| An issue found in Wondershare Technology Co.,Ltd Dr.Fone v.12.4.9 allows a remote attacker to execute arbitrary commands via the drfone_setup_full3360.exe file. | ||||
| CVE-2023-27770 | 1 Wondershare | 1 Edraw-max | 2025-02-13 | 7.8 High |
| An issue found in Wondershare Technology Co.,Ltd Edraw-max v.12.0.4 allows a remote attacker to execute arbitrary commands via the edraw-max_setup_full5371.exe file. | ||||
| CVE-2023-29835 | 1 Wondershare | 1 Dr.fone | 2025-02-03 | 7.8 High |
| Insecure Permission vulnerability found in Wondershare Dr.Fone v.12.9.6 allows a remote attacker to escalate privileges via the service permission function. | ||||
| CVE-2023-31748 | 1 Wondershare | 1 Mobiletrans | 2025-01-31 | 7.8 High |
| Insecure permissions in MobileTrans v4.0.11 allows attackers to escalate privileges to local admin via replacing the executable file. | ||||
| CVE-2023-31747 | 1 Wondershare | 1 Filmora | 2025-01-21 | 7.8 High |
| Wondershare Filmora 12 (Build 12.2.1.2088) was discovered to contain an unquoted service path vulnerability via the component NativePushService. This vulnerability allows attackers to launch processes with elevated privileges. | ||||
| CVE-2024-24122 | 1 Wondershare | 1 Edraw | 2024-11-21 | 3.3 Low |
| A remote code execution vulnerability in the project management of Wanxing Technology's Yitu project which allows an attacker to use the exp.adpx file as a zip compressed file to construct a special file name, which can be used to decompress the project file into the system startup folder, restart the system, and automatically execute the constructed attack script. | ||||
| CVE-2021-44596 | 1 Wondershare | 1 Dr.fone | 2024-11-21 | 9.8 Critical |
| Wondershare LTD Dr. Fone as of 2021-12-06 version is affected by Remote code execution. Due to software design flaws an unauthenticated user can communicate over UDP with the "InstallAssistService.exe" service(the service is running under SYSTEM privileges) and manipulate it to execute malicious executable without any validation from a remote location and gain SYSTEM privileges | ||||
| CVE-2021-44595 | 1 Wondershare | 1 Dr.fone | 2024-11-21 | 8.8 High |
| Wondershare Dr. Fone Latest version as of 2021-12-06 is vulnerable to Incorrect Access Control. A normal user can send manually crafted packets to the ElevationService.exe and execute arbitrary code without any validation with SYSTEM privileges. | ||||
| CVE-2020-27992 | 1 Wondershare | 1 Dr.fone | 2024-11-21 | 7.8 High |
| Dr.Fone 3.0.0 allows local users to gain privileges via a Trojan horse DriverInstall.exe because %PROGRAMFILES(X86)%\Wondershare\dr.fone\Library\DriverInstaller has Full Control for BUILTIN\Users. | ||||