VYPR
Unrated severityNVD Advisory· Published Jan 13, 2026· Updated Mar 5, 2026

Wondershare Dr.Fone 11.4.9 - 'DFWSIDService' Unquoted Service Path

CVE-2022-50901

Description

Wondershare Dr.Fone 11.4.9 contains an unquoted service path vulnerability in the DFWSIDService that allows local users to potentially execute arbitrary code. Attackers can exploit the unquoted path in C:\Program Files (x86)\Wondershare\Wondershare Dr.Fone\ to inject malicious executables that would run with LocalSystem privileges.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.