2 matches found
CVE-2023-38356
CVE-2023-38356 affects MiniTool Power Data Recovery 11.6. The vulnerability arises from an insecure installation process that enables a man-in-the-middle attack to achieve remote code execution. Documents from multiple sources confirm the issue and its impact (RCE via MITM) and consistently cite ...
CVE-2023-38353
Affected software: MiniTool Power Data Recovery, version 11.6 and earlier. Vulnerability: insecure in-app payment system that enables a man-in-the-middle attack to exfiltrate highly sensitive information. Impact: information disclosure due to compromised payment flow; no other impacts stated. Roo...