Every CVE whose affected-product data names Wondershare Dr.fone, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2021-44596 — CVSS 9.8 (critical): Wondershare LTD Dr. Fone as of 2021-12-06 version is affected by Remote code execution. Due to software design flaws an unauthenticated…
CVE-2021-44595 — CVSS 8.8 (high): Wondershare Dr. Fone Latest version as of 2021-12-06 is vulnerable to Incorrect Access Control. A normal user can send manually crafted…
CVE-2022-50901 — CVSS 8.4 (high): Wondershare Dr.Fone 11.4.9 contains an unquoted service path vulnerability in the DFWSIDService that allows local users to potentially…
CVE-2022-50900 — CVSS 8.4 (high): Wondershare Dr.Fone 12.0.18 contains an unquoted service path vulnerability that allows local users to execute arbitrary code with elevated…
CVE-2023-29835 — CVSS 7.8 (high): Insecure Permission vulnerability found in Wondershare Dr.Fone v.12.9.6 allows a remote attacker to escalate privileges via the service…
CVE-2023-27010 — CVSS 7.8 (high): Wondershare Dr.Fone v12.9.6 was discovered to contain weak permissions for the service WsDrvInst. This vulnerability allows attackers to…
CVE-2023-27767 — CVSS 7.8 (high): An issue found in Wondershare Technology Co.,Ltd Dr.Fone v.12.4.9 allows a remote attacker to execute arbitrary commands via the…
CVE-2020-27992 — CVSS 7.8 (high): Dr.Fone 3.0.0 allows local users to gain privileges via a Trojan horse DriverInstall.exe because %PROGRAMFILES(X86)%\Wondershare\dr.fone\Lib…