Lucene search
K

79 matches found

Cvelist
Cvelist
added 2023/09/19 12:0 a.m.25 views

CVE-2023-38356

MiniTool Power Data Recovery 11.6 contains an insecure installation process that allows attackers to achieve remote code execution through a man in the middle attack...

8.6AI score0.0063EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/09/19 12:0 a.m.5 views

MiniTool Partition Wizard Trust Management Issue Vulnerability

MiniTool Partition Wizard is a partition manager for home and home office users from MiniTool Canada. A security vulnerability exists in MiniTool Partition Wizard version 12.8, which originates from a vulnerability that allows an attacker to achieve remote code execution via a man-in-the-middle...

8.1CVSS7.9AI score0.0063EPSS
Exploits0References2
CVE
CVE
added 2023/09/19 12:0 a.m.47 views

CVE-2023-38352

CVE-2023-38352 affects MiniTool Partition Wizard 12.8. The issue is an insecure update mechanism that allows remote code execution via a man-in-the-middle attack. Root cause is lack of proper update integrity/authentication during updates, enabling an attacker on the network to tamper update deli...

8.1CVSS8.3AI score0.0063EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/09/19 12:0 a.m.23 views

CVE-2023-38353

MiniTool Power Data Recovery version 11.6 and before contains an insecure in-app payment system that allows attackers to steal highly sensitive information through a man in the middle attack...

5.8AI score0.0036EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/09/19 12:0 a.m.19 views

CVE-2023-38351

MiniTool Partition Wizard 12.8 contains an insecure installation mechanism that allows attackers to achieve remote code execution through a man in the middle attack...

8.6AI score0.0063EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/09/19 12:0 a.m.7 views

CVE-2023-38353

MiniTool Power Data Recovery version 11.6 and before contains an insecure in-app payment system that allows attackers to steal highly sensitive information through a man in the middle attack...

6.4AI score0.0036EPSS
Exploits0References1
CVE
CVE
added 2023/09/19 12:0 a.m.57 views

CVE-2023-38356

CVE-2023-38356 affects MiniTool Power Data Recovery 11.6. The vulnerability arises from an insecure installation process that enables a man-in-the-middle attack to achieve remote code execution. Documents from multiple sources confirm the issue and its impact (RCE via MITM) and consistently cite ...

8.1CVSS8.3AI score0.0063EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/19 12:0 a.m.18 views

CVE-2023-38352

MiniTool Partition Wizard 12.8 contains an insecure update mechanism that allows attackers to achieve remote code execution through a man in the middle attack...

7.8AI score0.0063EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/09/19 12:0 a.m.16 views

CVE-2023-38356

MiniTool Power Data Recovery 11.6 contains an insecure installation process that allows attackers to achieve remote code execution through a man in the middle attack...

7.8AI score0.0063EPSS
Exploits0References1
CVE
CVE
added 2023/09/19 12:0 a.m.42 views

CVE-2023-38351

CVE-2023-38351 affects MiniTool Partition Wizard 12.8. The vulnerability stems from an insecure installation mechanism that enables remote code execution via a man-in-the-middle attack. Documented impact indicates high-severity with network attack vector, no user interaction required, and affects...

8.1CVSS8.3AI score0.0063EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/19 12:0 a.m.18 views

CVE-2023-38351

MiniTool Partition Wizard 12.8 contains an insecure installation mechanism that allows attackers to achieve remote code execution through a man in the middle attack...

7.8AI score0.0063EPSS
Exploits0References1
CVE
CVE
added 2023/09/19 12:0 a.m.53 views

CVE-2023-38353

Affected software: MiniTool Power Data Recovery, version 11.6 and earlier. Vulnerability: insecure in-app payment system that enables a man-in-the-middle attack to exfiltrate highly sensitive information. Impact: information disclosure due to compromised payment flow; no other impacts stated. Roo...

5.9CVSS5.5AI score0.0036EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/19 12:0 a.m.9 views

CVE-2023-38354

MiniTool Shadow Maker version 4.1 contains an insecure installation process that allows attackers to achieve remote code execution through a man in the middle attack...

7.8AI score0.0063EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/09/19 12:0 a.m.3 views

PT-2023-26378 · Minitool · Minitool Partition Wizard

Name of the Vulnerable Software and Affected Versions: MiniTool Partition Wizard version 12.8 Description: The issue is related to an insecure installation mechanism in MiniTool Partition Wizard, which allows attackers to achieve remote code execution through a man-in-the-middle attack...

8.1CVSS8.2AI score0.0063EPSS
Exploits0References5
CVE
CVE
added 2023/09/19 12:0 a.m.49 views

CVE-2023-38355

The CVE-2023-38355 entry concerns MiniTool Movie Maker 7.0, where an insecure installation process enables remote code execution via a man‑in‑the‑middle (MITM) attack. Affected versions span 6.1.0 to 7.0, with mitigations suggesting upgrades to versions later than 7.0 for 7.0 and later than 7.0 f...

8.1CVSS8.3AI score0.0063EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/09/19 12:0 a.m.26 views

CVE-2023-38352

MiniTool Partition Wizard 12.8 contains an insecure update mechanism that allows attackers to achieve remote code execution through a man in the middle attack...

8.6AI score0.0063EPSS
Exploits0References1
CVE
CVE
added 2023/09/19 12:0 a.m.48 views

CVE-2023-38354

CVE-2023-38354 affects MiniTool Shadow Maker version 4.1. The vulnerability arises from an insecure installation process that can enable a remote code execution via a man-in-the-middle attack. The available sources (NVD/Red Hat/CVE catalogs) describe the issue and its exploitability in terms of a...

8.1CVSS8.3AI score0.0063EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/09/19 12:0 a.m.17 views

CVE-2023-38354

MiniTool Shadow Maker version 4.1 contains an insecure installation process that allows attackers to achieve remote code execution through a man in the middle attack...

8.6AI score0.0063EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/09/10 12:0 a.m.3 views

PT-2023-26379 · Minitool · Minitool Partition Wizard

Name of the Vulnerable Software and Affected Versions: MiniTool Partition Wizard version 12.8 Description: The issue is related to an insecure update mechanism in MiniTool Partition Wizard, which can be exploited by attackers to achieve remote code execution through a man-in-the-middle attack...

8.1CVSS8.2AI score0.0063EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2023/09/10 12:0 a.m.3 views

PT-2023-26380 · Minitool · Minitool Power Data Recovery

Name of the Vulnerable Software and Affected Versions: MiniTool Power Data Recovery versions 11.6 and before MiniTool Power Data Recovery version 11.5 Description: The issue concerns an insecure in-app payment system in MiniTool Power Data Recovery, which can be exploited through a...

5.9CVSS5.6AI score0.0036EPSS
Exploits0References7
Rows per page
Query Builder