← Back

Filmora

filmora

Vendor: Wondershare • 5 CVEs

CVEs (5)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-5180
1Wondershare
1Filmora
Jun 3, 2025
May 26, 2025
7.3 HIGH· v4
7.3 HIGH· v3
6.0 MEDIUM· v2
A vulnerability, which was classified as critical, has been found in Wondershare Filmora 14.5.16. Affected by this issue is some unknown functionality in the library CRYPTBASE.dll of the file NFWCHK.exe of the component...Show more
A vulnerability, which was classified as critical, has been found in Wondershare Filmora 14.5.16. Affected by this issue is some unknown functionality in the library CRYPTBASE.dll of the file NFWCHK.exe of the component Installer. The manipulation leads to uncontrolled search path. Attacking locally is a requirement. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2020-23438
1Wondershare
1Filmora
Mar 26, 2025
Mar 4, 2025
N/A· v4
7.8 HIGH· v3
N/A· v2
Wondershare filmora 9.2.11 is affected by Trojan Dll hijacking leading to privilege escalation.
CVE-2024-26574
1Wondershare
1Filmora
Mar 28, 2025
Apr 8, 2024
N/A· v4
7.8 HIGH· v3
N/A· v2
Insecure Permissions vulnerability in Wondershare Filmora v.13.0.51 allows a local attacker to execute arbitrary code via a crafted script to the WSNativePushService.exe
CVE-2023-31747
1Wondershare
1Filmora
Jan 21, 2025
May 23, 2023
N/A· v4
7.8 HIGH· v3
N/A· v2
Wondershare Filmora 12 (Build 12.2.1.2088) was discovered to contain an unquoted service path vulnerability via the component NativePushService. This vulnerability allows attackers to launch processes with elevated privi...Show more
Wondershare Filmora 12 (Build 12.2.1.2088) was discovered to contain an unquoted service path vulnerability via the component NativePushService. This vulnerability allows attackers to launch processes with elevated privileges.Show less
CVE-2023-27760
1Wondershare
1Filmora
Feb 13, 2025
Apr 4, 2023
N/A· v4
7.8 HIGH· v3
N/A· v2
An issue found in Wondershare Technology Co, Ltd Filmora v.12.0.9 allows a remote attacker to execute arbitrary commands via the filmora_setup_full846.exe.