Privilege Escalation Vulnerability in MobileTrans by Wondershare
CVE-2023-31748

7.8HIGH

Key Information:

Vendor: Wondershare
Status: Mobiletrans
Vendor: CVE Published:; 24 May 2023

🔔 Create Wondershare Vulnerability Alert

What is CVE-2023-31748?

In MobileTrans version 4.0.11, insecure permissions create a security risk that enables local attackers to escalate their privileges. By replacing the executable file, attackers can gain unauthorized access to system-level privileges, potentially compromising sensitive data and system integrity. Users of MobileTrans are advised to update to the latest version and review their system's permissions to mitigate this vulnerability. For further details, please refer to the official website and security reports.

References

http://mobiletrans.com

https://packetstormsecurity.com/files/172466/MobileTrans-...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 24, 2023
Vulnerability Reserved
Apr 29, 2023