Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lenovo shareit vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2016-1489
Lenovo SHAREit prior to 3.2.0 for Windows and SHAREit prior to 3.5.48_ww for Android transfer files in cleartext, which allows remote malicious users to (1) obtain sensitive information by sniffing the network or (2) conduct man-in-the-middle (MITM) attacks via unspecified vector...
Lenovo Shareit
1 Article
240
VMScore
CVE-2016-1490
The Wifi hotspot in Lenovo SHAREit prior to 3.2.0 for Windows allows remote malicious users to obtain sensitive file names via a crafted file request to /list.
Lenovo Shareit
1 Article
481
VMScore
CVE-2016-1491
The Wifi hotspot in Lenovo SHAREit prior to 3.2.0 for Windows, when configured to receive files, has a hardcoded password of 12345678, which makes it easier for remote malicious users to obtain access by leveraging a position within the WLAN coverage area.
Lenovo Shareit
1 Article
828
VMScore
CVE-2016-4782
Lenovo SHAREit prior to 3.5.98_ww on Android prior to 4.2 allows remote malicious users to have unspecified impact via a crafted intent: URL, aka an "intent scheme URL attack."
Lenovo Shareit 3.5.98 Ww
383
VMScore
CVE-2016-4783
Cross-site scripting (XSS) vulnerability in Lenovo SHAREit prior to 3.5.98_ww on Android prior to 4.4 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, aka "Universal XSS (UXSS)."
Lenovo Shareit 3.5.98 Ww
258
VMScore
CVE-2016-1492
The Wifi hotspot in Lenovo SHAREit prior to 3.5.48_ww for Android, when configured to receive files, does not require a password, which makes it easier for remote malicious users to obtain access by leveraging a position within the WLAN coverage area.
Lenovo Shareit 3.0.18 Ww
1 Article
668
VMScore
CVE-2014-1939
java/android/webkit/BrowserFrame.java in Android prior to 4.4 uses the addJavascriptInterface API in conjunction with creating an object of the SearchBoxImpl class, which allows malicious users to execute arbitrary Java code by leveraging access to the searchBoxJavaBridge_ interf...
Google Android 4.0.3
Google Android 4.0.2
Google Android 4.0.1
Google Android 4.0
Google Android
Google Android 4.3
Google Android 4.2.2
Google Android 4.2.1
Google Android 4.2
Google Android 4.1
Google Android 4.1.2
Google Android 4.0.4
Lenovo Shareit
1 Github repository
1 Article
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4654
CVE-2023-49606
encryption
NULL pointer dereference
CVE-2024-4439
CVE-2024-4649
race condition
CVE-2024-27202
CVE-2024-34566
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started