22 matches found
(0Day) Wondershare Repairit SAS Token Incorrect Permission Assignment Authentication Bypass Vulnerability
This vulnerability allows remote attackers to bypass authentication on Wondershare Repairit. Authentication is not required to exploit this vulnerability. The specific flaw exists within the permissions granted to an SAS token. An attacker can leverage this vulnerability to launch a supply-chain...
(0Day) Wondershare Repairit Incorrect Permission Assignment Authentication Bypass Vulnerability
This vulnerability allows remote attackers to bypass authentication on affected installations of Wondershare Repairit. Authentication is not required to exploit this vulnerability. The specific flaw exists within the permissions granted to a storage account token. An attacker can leverage this...
EUVD-2023-31500
Malicious code in bioql PyPI...
Two Critical Flaws Uncovered in Wondershare RepairIt Exposing User Data and AI Models
Cybersecurity researchers have disclosed two security flaws in Wondershare RepairIt that exposed private user data and potentially exposed the system to artificial intelligence AI model tampering and supply chain risks. The critical-rated vulnerabilities in question, discovered by Trend Micro, ar...
CVE-2025-10644
Wondershare Repairit SAS Token Incorrect Permission Assignment Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on Wondershare Repairit. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...
CVE-2025-10643
Wondershare Repairit Incorrect Permission Assignment Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Wondershare Repairit. Authentication is not required to exploit this vulnerability. The specific flaw exists...
CVE-2025-10644
Wondershare Repairit SAS Token Incorrect Permission Assignment Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on Wondershare Repairit. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...
CVE-2025-10643
Wondershare Repairit Incorrect Permission Assignment Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Wondershare Repairit. Authentication is not required to exploit this vulnerability. The specific flaw exists...
CVE-2025-10643
Wondershare Repairit Incorrect Permission Assignment Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Wondershare Repairit. Authentication is not required to exploit this vulnerability. The specific flaw exists...
CVE-2025-10644 Wondershare Repairit SAS Token Incorrect Permission Assignment Authentication Bypass Vulnerability
Wondershare Repairit SAS Token Incorrect Permission Assignment Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on Wondershare Repairit. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...
CVE-2025-10644
CVE-2025-10644 affects Wondershare Repairit and involves SAS token permission misconfigurations that allow authentication bypass and could enable remote code execution on customer endpoints. The vulnerability arises from overly permissive permissions granted to a storage account token, per ZDI-25...
CVE-2025-10644 Wondershare Repairit SAS Token Incorrect Permission Assignment Authentication Bypass Vulnerability
Wondershare Repairit SAS Token Incorrect Permission Assignment Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on Wondershare Repairit. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...
CVE-2025-10643 Wondershare Repairit Incorrect Permission Assignment Authentication Bypass Vulnerability
Wondershare Repairit Incorrect Permission Assignment Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Wondershare Repairit. Authentication is not required to exploit this vulnerability. The specific flaw exists...
CVE-2025-10643 Wondershare Repairit Incorrect Permission Assignment Authentication Bypass Vulnerability
Wondershare Repairit Incorrect Permission Assignment Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Wondershare Repairit. Authentication is not required to exploit this vulnerability. The specific flaw exists...
CVE-2025-10643
Wondershare Repairit contains an authentication bypass vulnerability (CVE-2025-10643) caused by incorrect permissions for a storage account token. The flaw allows remote attackers to bypass authentication on affected installations, with CVSS3 base score 9.1 (CRITICAL) and an attack vector of NETW...
PT-2025-38265
Name of the Vulnerable Software and Affected Versions Wondershare Repairit affected versions not specified Description The software contains an authentication bypass due to incorrect permission assignment of SAS tokens. This allows unauthorized access. Recommendations At the moment, there is no...
Wondershare Repairit 安全漏洞
Wondershare Repairit is a file repair software from Wondershare UK. A security vulnerability exists in Wondershare Repairit that stems from improperly assigned storage account token permissions, which could lead to authentication bypass...
PT-2025-38264
Name of the Vulnerable Software and Affected Versions Wondershare Repairit version 6.5.2 Wondershare Repairit affected versions not specified Description The software contains an authentication bypass issue stemming from incorrect permission assignments within a storage account token. This allows...
Wondershare Repairit 安全漏洞
Wondershare Repairit is a file repair software from Wondershare UK. A security vulnerability exists in Wondershare Repairit that stems from improperly assigned SAS token permissions, which could lead to authentication bypass and remote code execution...
CVE-2023-27764
An issue found in Wondershare Technology Co.,Ltd Repairit v.3.5.4 allows a remote attacker to execute arbitrary commands via the repairitsetupfull5913.exe file...