Lucene search
HistoryMay 24, 2023 - 3:15 p.m.
CVE-2023-31748
mobiletrans
insecure permissions
privilege escalation
file replacement
cve-2023-31748
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
20.8%
Insecure permissions in MobileTrans v4.0.11 allows attackers to escalate privileges to local admin via replacing the executable file.
Affected configurations
Node
wondersharemobiletransMatch4.0.11
Related
cvelist
cvelist
CVE-2023-31748
2023-05-24 00:00:00
prion
prion
Design/Logic Flaw
2023-05-24 15:15:00
cve
cve
CVE-2023-31748
2023-05-24 15:15:09
zdt
zdt
MobileTrans 4.0.11 Weak Service Permissions Vulnerability
2023-05-19 00:00:00
packetstorm
packetstorm
MobileTrans 4.0.11 Weak Service Permissions
2023-05-19 00:00:00
exploitdb
exploitdb
MobileTrans 4.0.11 - Weak Service Privilege Escalation
2023-05-23 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
20.8%
Related for NVD:CVE-2023-31748