Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lenovo shareit vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2016-1491
The Wifi hotspot in Lenovo SHAREit prior to 3.2.0 for Windows, when configured to receive files, has a hardcoded password of 12345678, which makes it easier for remote malicious users to obtain access by leveraging a position within the WLAN coverage area.
Lenovo Shareit
1 Article
4.1
CVSSv3
CVE-2016-1490
The Wifi hotspot in Lenovo SHAREit prior to 3.2.0 for Windows allows remote malicious users to obtain sensitive file names via a crafted file request to /list.
Lenovo Shareit
1 Article
8
CVSSv3
CVE-2016-1489
Lenovo SHAREit prior to 3.2.0 for Windows and SHAREit prior to 3.5.48_ww for Android transfer files in cleartext, which allows remote malicious users to (1) obtain sensitive information by sniffing the network or (2) conduct man-in-the-middle (MITM) attacks via unspecified vector...
Lenovo Shareit
1 Article
8.8
CVSSv3
CVE-2016-4782
Lenovo SHAREit prior to 3.5.98_ww on Android prior to 4.2 allows remote malicious users to have unspecified impact via a crafted intent: URL, aka an "intent scheme URL attack."
Lenovo Shareit 3.5.98 Ww
6.1
CVSSv3
CVE-2016-4783
Cross-site scripting (XSS) vulnerability in Lenovo SHAREit prior to 3.5.98_ww on Android prior to 4.4 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, aka "Universal XSS (UXSS)."
Lenovo Shareit 3.5.98 Ww
6.1
CVSSv3
CVE-2016-1492
The Wifi hotspot in Lenovo SHAREit prior to 3.5.48_ww for Android, when configured to receive files, does not require a password, which makes it easier for remote malicious users to obtain access by leveraging a position within the WLAN coverage area.
Lenovo Shareit 3.0.18 Ww
1 Article
NA
CVE-2014-1939
java/android/webkit/BrowserFrame.java in Android prior to 4.4 uses the addJavascriptInterface API in conjunction with creating an object of the SearchBoxImpl class, which allows malicious users to execute arbitrary Java code by leveraging access to the searchBoxJavaBridge_ interf...
Google Android 4.0.3
Google Android 4.0.2
Google Android 4.0.1
Google Android 4.0
Google Android
Google Android 4.3
Google Android 4.2.2
Google Android 4.2.1
Google Android 4.2
Google Android 4.1
Google Android 4.1.2
Google Android 4.0.4
Lenovo Shareit
1 Github repository
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started