Vulnerabilities > Wondershare > DR Fone

DATE CVE VULNERABILITY TITLE RISK
2023-04-26 CVE-2023-29835 Unspecified vulnerability in Wondershare Dr.Fone 12.9.6
Insecure Permission vulnerability found in Wondershare Dr.Fone v.12.9.6 allows a remote attacker to escalate privileges via the service permission function.
local
low complexity
wondershare
7.8
7.8
2023-04-04 CVE-2023-27767 Untrusted Search Path vulnerability in Wondershare Dr.Fone 12.4.9
An issue found in Wondershare Technology Co.,Ltd Dr.Fone v.12.4.9 allows a remote attacker to execute arbitrary commands via the drfone_setup_full3360.exe file.
local
low complexity
wondershare CWE-426
7.8
7.8
2023-03-13 CVE-2023-27010 Unspecified vulnerability in Wondershare Dr.Fone 12.9.6
Wondershare Dr.Fone v12.9.6 was discovered to contain weak permissions for the service WsDrvInst.
local
low complexity
wondershare
7.8
7.8
2022-04-29 CVE-2021-44595 Missing Authorization vulnerability in Wondershare Dr.Fone 20211206
Wondershare Dr.
network
low complexity
wondershare CWE-862
8.8
8.8
2022-04-29 CVE-2021-44596 Unspecified vulnerability in Wondershare Dr.Fone 20211206
Wondershare LTD Dr.
network
low complexity
wondershare
critical
 9.8
9.8
2020-11-02 CVE-2020-27992 Incorrect Permission Assignment for Critical Resource vulnerability in Wondershare Dr.Fone 3.0.0
Dr.Fone 3.0.0 allows local users to gain privileges via a Trojan horse DriverInstall.exe because %PROGRAMFILES(X86)%\Wondershare\dr.fone\Library\DriverInstaller has Full Control for BUILTIN\Users.
local
low complexity
wondershare CWE-732
7.8
7.8