3 matches found
CVE-2022-29320
CVE-2022-29320 affects MiniTool Partition Wizard v12.0 and is caused by an unquoted service path, enabling local privilege escalation to SYSTEM. The provided documents consistently describe the issue as an elevation of privilege stemming from the unquoted service path; no explicit affected additi...
CVE-2023-38352
CVE-2023-38352 affects MiniTool Partition Wizard 12.8. The issue is an insecure update mechanism that allows remote code execution via a man-in-the-middle attack. Root cause is lack of proper update integrity/authentication during updates, enabling an attacker on the network to tamper update deli...
CVE-2023-38351
CVE-2023-38351 affects MiniTool Partition Wizard 12.8. The vulnerability stems from an insecure installation mechanism that enables remote code execution via a man-in-the-middle attack. Documented impact indicates high-severity with network attack vector, no user interaction required, and affects...