PT-2023-21328 · Wondershare · Wondershare Uniconverter

Yuan Lirong

Publicado

2023-04-04

Atualizado

2025-02-13

CVE-2023-27761

CVSS v3.1

7.8

Alta

Vetor

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Wondershare UniConverter version 14.0.0

Description An issue in Wondershare UniConverter allows a remote attacker to execute arbitrary commands via the uniconverter14 64bit setup full14204.exe file.

Recommendations For Wondershare UniConverter version 14.0.0, consider removing or restricting access to the uniconverter14 64bit setup full14204.exe file as a temporary mitigation measure until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Untrusted Search Path

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-426

Identificadores relacionados

CVE-2023-27761

Produtos afetados

Wondershare Uniconverter

PT-2023-21328 · Wondershare · Wondershare Uniconverter

CVE-2023-27761

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5