PT-2023-26381 · Minitool · Minitool Movie Maker

0Dr3F

Publicado

2023-09-19

Atualizado

2023-10-13

CVE-2023-38354

CVSS v3.1

8.1

Alta

Vetor

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions MiniTool Movie Maker version 4.1

Description The issue is related to an insecure installation process in MiniTool Movie Maker, which allows attackers to achieve remote code execution through a man-in-the-middle attack.

Recommendations For MiniTool Movie Maker version 4.1, consider updating to a newer version that addresses the insecure installation process to prevent remote code execution attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Certificate Validation

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-295

Identificadores relacionados

CVE-2023-38354

Produtos afetados

Minitool Movie Maker

PT-2023-26381 · Minitool · Minitool Movie Maker

CVE-2023-38354

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 8