Remote Command Execution Vulnerability in Wondershare PDF Reader
CVE-2023-27769

7.8HIGH

Key Information:

Vendor: Wondershare
Status: PDF Reader
Vendor: CVE Published:; 4 April 2023

🔔 Create Wondershare Vulnerability Alert

What is CVE-2023-27769?

A vulnerability in Wondershare Technology Co., Ltd's PDF Reader version 1.0.1 could allow a remote attacker to execute arbitrary commands. The issue arises from the pdfreader_setup_full13143.exe file, which may be exploited by an attacker to execute malicious commands on an affected system. Users should remain vigilant and ensure their software is updated to protect against potential attacks.

References

https://github.com/liong007/Wondershare/issues/11

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 4, 2023
Vulnerability Reserved
Mar 5, 2023