Skip to main content

Dr Fone

6 CVEs product

Monthly

CVE-2023-29835 HIGH POC This Week

Insecure Permission vulnerability found in Wondershare Dr.Fone v.12.9.6 allows a remote attacker to escalate privileges via the service permission function. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Dr Fone
NVD GitHub
CVSS 3.1
7.8
EPSS
0.4%
CVE-2023-27767 HIGH POC This Week

An issue found in Wondershare Technology Co.,Ltd Dr.Fone v.12.4.9 allows a remote attacker to execute arbitrary commands via the drfone_setup_full3360.exe file. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Dr Fone
NVD GitHub
CVSS 3.1
7.8
EPSS
0.4%
CVE-2023-27010 HIGH POC This Week

Wondershare Dr.Fone v12.9.6 was discovered to contain weak permissions for the service WsDrvInst. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Dr Fone
NVD Exploit-DB
CVSS 3.1
7.8
EPSS
1.0%
CVE-2021-44596 CRITICAL POC THREAT Emergency

Wondershare LTD Dr. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 22.7%.

RCE Dr Fone
NVD Exploit-DB VulDB
CVSS 3.1
9.8
EPSS
22.7%
Threat
4.1
CVE-2021-44595 HIGH POC THREAT Act Now

Wondershare Dr. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 21.0%.

Authentication Bypass RCE Dr Fone
NVD Exploit-DB VulDB
CVSS 3.1
8.8
EPSS
21.0%
CVE-2020-27992 HIGH POC This Week

Dr.Fone 3.0.0 allows local users to gain privileges via a Trojan horse DriverInstall.exe because %PROGRAMFILES(X86)%\Wondershare\dr.fone\Library\DriverInstaller has Full Control for BUILTIN\Users. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Dr Fone
NVD
CVSS 3.1
7.8
EPSS
0.4%
EPSS 0% CVSS 7.8
HIGH POC This Week

Insecure Permission vulnerability found in Wondershare Dr.Fone v.12.9.6 allows a remote attacker to escalate privileges via the service permission function. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Dr Fone
NVD GitHub
EPSS 0% CVSS 7.8
HIGH POC This Week

An issue found in Wondershare Technology Co.,Ltd Dr.Fone v.12.4.9 allows a remote attacker to execute arbitrary commands via the drfone_setup_full3360.exe file. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Dr Fone
NVD GitHub
EPSS 1% CVSS 7.8
HIGH POC This Week

Wondershare Dr.Fone v12.9.6 was discovered to contain weak permissions for the service WsDrvInst. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Dr Fone
NVD Exploit-DB
EPSS 23% 4.1 CVSS 9.8
CRITICAL POC THREAT Emergency

Wondershare LTD Dr. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 22.7%.

RCE Dr Fone
NVD Exploit-DB VulDB
EPSS 21% CVSS 8.8
HIGH POC THREAT Act Now

Wondershare Dr. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 21.0%.

Authentication Bypass RCE Dr Fone
NVD Exploit-DB VulDB
EPSS 0% CVSS 7.8
HIGH POC This Week

Dr.Fone 3.0.0 allows local users to gain privileges via a Trojan horse DriverInstall.exe because %PROGRAMFILES(X86)%\Wondershare\dr.fone\Library\DriverInstaller has Full Control for BUILTIN\Users. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Dr Fone
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy