Lucene search
HistoryMar 13, 2023 - 7:15 p.m.
CVE-2023-27010
wondershare dr.fone
weak permissions
wsdrvinst
privilege escalation
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
9.0%
Wondershare Dr.Fone v12.9.6 was discovered to contain weak permissions for the service WsDrvInst. This vulnerability allows attackers to escalate privileges via modifying or overwriting the executable.
Affected configurations
Node
wondersharedr.foneMatch12.9.6windows
| Vendor | Product | Version | CPE |
|---|---|---|---|
| wondershare | dr.fone | 12.9.6 | cpe:2.3:a:wondershare:dr.fone:12.9.6:*:*:*:*:windows:*:* |
Related
zdt
zdt
Wondershare Dr Fone 12.9.6 - Privilege Escalation Vulnerability
2023-04-07 00:00:00
prion
prion
Code injection
2023-03-13 19:15:00
cvelist
cvelist
CVE-2023-27010
2023-03-13 00:00:00
cve
cve
CVE-2023-27010
2023-03-13 19:15:22
packetstorm
packetstorm
Wondershare Dr Fone 12.9.6 Weak Permissions / Privilege Escalation
2023-03-09 00:00:00
exploitdb
exploitdb
Wondershare Dr Fone 12.9.6 - Privilege Escalation
2023-04-07 00:00:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2023-27010