Vulnerabilities > Lenovo > Shareit > 3.0.18.ww

DATE CVE VULNERABILITY TITLE RISK
2016-01-26 CVE-2016-1492 Improper Access Control vulnerability in Lenovo Shareit 3.0.18Ww
The Wifi hotspot in Lenovo SHAREit before 3.5.48_ww for Android, when configured to receive files, does not require a password, which makes it easier for remote attackers to obtain access by leveraging a position within the WLAN coverage area.
high complexity
lenovo CWE-284
6.1
2016-01-26 CVE-2016-1489 7PK - Security Features vulnerability in Lenovo Shareit 2.5.1.1/3.0.18Ww
Lenovo SHAREit before 3.2.0 for Windows and SHAREit before 3.5.48_ww for Android transfer files in cleartext, which allows remote attackers to (1) obtain sensitive information by sniffing the network or (2) conduct man-in-the-middle (MITM) attacks via unspecified vectors.
high complexity
lenovo CWE-254
8.0