PT-2026-2376 · Wondershare · Wondershare Dr.Fone

Mohamed Alzhrani

Publicado

2026-01-13

Atualizado

2026-01-15

CVE-2022-50900

CVSS v3.1

8.4

Alta

Vetor

AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Wondershare Dr.Fone version 12.0.18

Description Wondershare Dr.Fone version 12.0.18 contains an unquoted service path issue. This allows local users to execute arbitrary code with elevated system privileges. The misconfigured service path can be exploited to insert malicious code that will be executed with LocalSystem permissions during service startup.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-428

Identificadores relacionados

CVE-2022-50900

Produtos afetados

Wondershare Dr.Fone

PT-2026-2376 · Wondershare · Wondershare Dr.Fone

CVE-2022-50900

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6