Minitool

minitool

7 CVEs • 4 products

Products (4)

Click to collapse

Toggle

Partition Wizard

partition_wizard

Power Data Recovery

power_data_recovery

CVEs (7)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-38356 1Minitool 1Power Data Recovery Nov 21, 2024 Sep 19, 2023 N/A· v4 8.1 HIGH· v3 N/A· v2 MiniTool Power Data Recovery 11.6 contains an insecure installation process that allows attackers to achieve remote code execution through a man in the middle attack.
CVE-2023-38355 1Minitool 1Movie Maker Nov 21, 2024 Sep 19, 2023 N/A· v4 8.1 HIGH· v3 N/A· v2 MiniTool Movie Maker 7.0 contains an insecure installation process that allows attackers to achieve remote code execution through a man in the middle attack.
CVE-2023-38354 1Minitool 1Shadowmaker Nov 21, 2024 Sep 19, 2023 N/A· v4 8.1 HIGH· v3 N/A· v2 MiniTool Shadow Maker version 4.1 contains an insecure installation process that allows attackers to achieve remote code execution through a man in the middle attack.
CVE-2023-38353 1Minitool 1Power Data Recovery Nov 21, 2024 Sep 19, 2023 N/A· v4 5.9 MEDIUM· v3 N/A· v2 MiniTool Power Data Recovery version 11.6 and before contains an insecure in-app payment system that allows attackers to steal highly sensitive information through a man in the middle attack.
CVE-2023-38352 1Minitool 1Partition Wizard Nov 21, 2024 Sep 19, 2023 N/A· v4 8.1 HIGH· v3 N/A· v2 MiniTool Partition Wizard 12.8 contains an insecure update mechanism that allows attackers to achieve remote code execution through a man in the middle attack.
CVE-2023-38351 1Minitool 1Partition Wizard Nov 21, 2024 Sep 19, 2023 N/A· v4 8.1 HIGH· v3 N/A· v2 MiniTool Partition Wizard 12.8 contains an insecure installation mechanism that allows attackers to achieve remote code execution through a man in the middle attack.
CVE-2022-29320 1Minitool 1Partition Wizard Nov 21, 2024 May 20, 2022 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 MiniTool Partition Wizard v12.0 contains an unquoted service path which allows attackers to escalate privileges to the system level.