Lucene search
K

92 matches found

Cvelist
Cvelist
added 2016/01/26 7:0 p.m.26 views

CVE-2016-1492

The Wifi hotspot in Lenovo SHAREit before 3.5.48ww for Android, when configured to receive files, does not require a password, which makes it easier for remote attackers to obtain access by leveraging a position within the WLAN coverage area...

6.4AI score0.01786EPSS
Exploits1References5
CVE
CVE
added 2016/01/26 7:0 p.m.53 views

CVE-2016-1489

CVE-2016-1489 affects Lenovo SHAREit for Windows (before 3.2.0) and Android (before 3.5.48_ww); files transferred over HTTP are in cleartext, enabling an attacker to sniff traffic or perform MITM attacks. CoreLabs and Lenovo advisories note related flaws (hard-coded password and unencrypted trans...

8CVSS7.8AI score0.01825EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2016/01/26 7:0 p.m.44 views

CVE-2016-1490

CVE-2016-1490 is part of Lenovo SHAREit vulnerabilities reported by Core Security (CORE-2016-0002). It describes information disclosure on Windows SHAREit when the Wi‑Fi hotspot is active with the default password 12345678. An attacker within range could remotely browse file names by issuing an H...

4.1CVSS5.8AI score0.01724EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2016/01/26 7:0 p.m.22 views

CVE-2016-1491

The Wifi hotspot in Lenovo SHAREit before 3.2.0 for Windows, when configured to receive files, has a hardcoded password of 12345678, which makes it easier for remote attackers to obtain access by leveraging a position within the WLAN coverage area...

8.7AI score0.02494EPSS
Exploits1References5
Cvelist
Cvelist
added 2016/01/26 7:0 p.m.24 views

CVE-2016-1490

The Wifi hotspot in Lenovo SHAREit before 3.2.0 for Windows allows remote attackers to obtain sensitive file names via a crafted file request to /list...

4.5AI score0.01724EPSS
Exploits1References5
CVE
CVE
added 2016/01/26 7:0 p.m.47 views

CVE-2016-1491

Summary of CVE-2016-1491 (Lenovo SHAREit) : CoreLabs’ advisory confirms a hard-coded password vulnerability in Lenovo SHAREit for Windows prior to version 3.2.0 where a Wi‑Fi hotspot is created to receive files using the fixed password “12345678,” enabling a remote attacker within WLAN range to g...

8.8CVSS8.5AI score0.02494EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2016/01/26 7:0 p.m.55 views

CVE-2016-1492

CVE-2016-1492 concerns Lenovo SHAREit for Android. When the app is configured to receive files, it creates an open Wi‑Fi hotspot with no password, allowing an attacker within WLAN range to connect and potentially capture traffic transferred between devices. The CoreLabs advisory and Lenovo securi...

6.1CVSS7.1AI score0.01786EPSS
Exploits1References5Affected Software1
ThreatPost
ThreatPost
added 2016/01/25 10:53 a.m.14 views

Lenovo SHAREit App Hard-Coded Password

Lenovo today has patched a number of vulnerabilities that jeopardize private data, which are largely enabled by a simple hard-coded password in a freely available file-sharing application. The flaws were found in in the Lenovo ShareIT application for Android and Windows by researchers at Core...

0.7AI score
Exploits0References4
Packet Storm
Packet Storm
added 2016/01/25 12:0 a.m.111 views

Lenovo ShareIT Information Disclosure / Hardcoded Password

Advisory Information Title: Lenovo ShareIT Multiple Vulnerabilities Advisory ID: CORE-2016-0002 Advisory URL: http://www.coresecurity.com/advisories/lenovo-shareit-multiple-vulnerabilities Date published: 2016-01-25 Date of last update: 2016-01-22 Vendors contacted: Lenovo Release mode:...

5.4CVSS0.3AI score0.02494EPSS
Exploits1
Core Security
Core Security
added 2016/01/25 12:0 a.m.541 views

Lenovo ShareIT Multiple Vulnerabilities

Advisory ID Internal CORE-2016-0002 1. Advisory Information Title: Lenovo ShareIT Multiple Vulnerabilities Advisory ID: CORE-2016-0002 Date published: 2016-01-25 Date of last update: 2016-01-22 Vendors contacted: Lenovo Release mode: Coordinated release 2. Vulnerability Information Class: Use of...

8.8CVSS7AI score0.02494EPSS
Exploits1
Packet Storm
Packet Storm
added 2015/12/08 12:0 a.m.33 views

SHAREit WebShare 2.3.80 Cross Site Scripting

http://192.168.1.5/list?path=alert/Mahdi.Hidden/...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2015/11/20 12:0 a.m.39 views

SHAREit WebShare 2.3.80 Cross Site Request Forgery

Ex. http://192.168.1.2 Ex. /folder/image.jpg setTimeoutcsrf.submit,1; Ex. http://192.168.1.2 Ex. /folder/ setTimeoutcsrf.submit,1;...

0.2AI score
Exploits0
Rows per page
Query Builder