Remote Command Execution Vulnerability in Wondershare Edrawmind Software
CVE-2023-27759

7.8HIGH

Key Information:

Vendor: Wondershare
Status: Edrawmind
Vendor: CVE Published:; 4 April 2023

🔔 Create Wondershare Vulnerability Alert

What is CVE-2023-27759?

A vulnerability in Wondershare Technology Co, Ltd's Edrawmind version 10.0.6 allows remote attackers to execute arbitrary commands by exploiting the WindowsCodescs.dll file. This flaw could lead to unauthorized command execution on the host system, posing a significant security risk.

References

https://github.com/liong007/Wondershare/issues/8

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Apr 4, 2023
Vulnerability Reserved
Mar 5, 2023

JSON