PT-2023-26381 · Minitool · Minitool Movie Maker
0Dr3F
·
Published
2023-09-19
·
Updated
2023-10-13
·
CVE-2023-38354
CVSS v3.1
8.1
High
| Vector | AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
MiniTool Movie Maker version 4.1
Description
The issue is related to an insecure installation process in MiniTool Movie Maker, which allows attackers to achieve remote code execution through a man-in-the-middle attack.
Recommendations
For MiniTool Movie Maker version 4.1, consider updating to a newer version that addresses the insecure installation process to prevent remote code execution attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Improper Certificate Validation
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Minitool Movie Maker