Wondershare Dr.Fone vulnerabilities
2 known vulnerabilities affecting wondershare/wondershare_dr.fone.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2022-50900P3HIGHCVSS 7.8v12.0.182026-01-13
CVE-2022-50900 [HIGH] CWE-428 CVE-2022-50900: Wondershare Dr.Fone 12.0.18 contains an unquoted service path vulnerability that allows local users
Wondershare Dr.Fone 12.0.18 contains an unquoted service path vulnerability that allows local users to execute arbitrary code with elevated system privileges. Attackers can exploit the misconfigured service path to insert malicious code that will be executed with LocalSystem permissions during service startup.
nvd
CVE-2022-50901P3HIGHCVSS 7.8v11.4.92026-01-13
CVE-2022-50901 [HIGH] CWE-428 CVE-2022-50901: Wondershare Dr.Fone 11.4.9 contains an unquoted service path vulnerability in the DFWSIDService that
Wondershare Dr.Fone 11.4.9 contains an unquoted service path vulnerability in the DFWSIDService that allows local users to potentially execute arbitrary code. Attackers can exploit the unquoted path in C:\Program Files (x86)\Wondershare\Wondershare Dr.Fone\ to inject malicious executables that would run with LocalSystem privileges.
nvd