CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-29835
https://notcve.org/view.php?id=CVE-2023-29835
26 Apr 2023 — Insecure Permission vulnerability found in Wondershare Dr.Fone v.12.9.6 allows a remote attacker to escalate privileges via the service permission function. • https://github.com/IthacaLabs/Wondershare/tree/main/Dr.Fone •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 2CVE-2023-27010 – Wondershare Dr Fone 12.9.6 - Privilege Escalation
https://notcve.org/view.php?id=CVE-2023-27010
09 Mar 2023 — Wondershare Dr.Fone v12.9.6 was discovered to contain weak permissions for the service WsDrvInst. This vulnerability allows attackers to escalate privileges via modifying or overwriting the executable. Wondershare Dr Fone version 12.9.6 suffers from a weak service permission vulnerability that can allow for privilege escalation. • https://packetstorm.news/files/id/171301 • CWE-250: Execution with Unnecessary Privileges •