CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 2CVE-2023-31748 – MobileTrans 4.0.11 - Weak Service Privilege Escalation
https://notcve.org/view.php?id=CVE-2023-31748
Insecure permissions in MobileTrans v4.0.11 allows attackers to escalate privileges to local admin via replacing the executable file. MobileTrans version 4.0.11 suffers from having a weak service permission vulnerability. • https://www.exploit-db.com/exploits/51479 http://mobiletrans.com https://packetstormsecurity.com/files/172466/MobileTrans-4.0.11-Weak-Service-Permissions.html • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 3CVE-2023-31747 – Filmora 12 version ( Build 1.0.0.7) - Unquoted Service Paths Privilege Escalation
https://notcve.org/view.php?id=CVE-2023-31747
Wondershare Filmora 12 (Build 12.2.1.2088) was discovered to contain an unquoted service path vulnerability via the component NativePushService. This vulnerability allows attackers to launch processes with elevated privileges. Filmora version 12 Build 1.0.0.7 suffers from an unquoted service path vulnerability. • https://www.exploit-db.com/exploits/51483 https://github.com/msd0pe-1/CVE-2023-31747 http://filmora.com http://wondershare.com https://packetstormsecurity.com/files/172464/Filmora-12-Build-1.0.0.7-Unquoted-Service-Path.html • CWE-428: Unquoted Search Path or Element •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-29835
https://notcve.org/view.php?id=CVE-2023-29835
Insecure Permission vulnerability found in Wondershare Dr.Fone v.12.9.6 allows a remote attacker to escalate privileges via the service permission function. • https://github.com/IthacaLabs/Wondershare/tree/main/Dr.Fone •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-27759
https://notcve.org/view.php?id=CVE-2023-27759
An issue found in Wondershare Technology Co, Ltd Edrawmind v.10.0.6 allows a remote attacker to executea arbitrary commands via the WindowsCodescs.dll file. • https://github.com/liong007/Wondershare/issues/8 • CWE-426: Untrusted Search Path •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-27760
https://notcve.org/view.php?id=CVE-2023-27760
An issue found in Wondershare Technology Co, Ltd Filmora v.12.0.9 allows a remote attacker to execute arbitrary commands via the filmora_setup_full846.exe. • https://github.com/liong007/Wondershare/issues/9 • CWE-426: Untrusted Search Path •