VYPR

SHAREit

by SHAREit

CVEs (4)

  • CVE-2019-9939HigMar 22, 2019
    risk 0.57cvss 8.8epss 0.02

    The SHAREit application before 4.0.36 for Android allows a remote attacker (on the same network or joining public "open" Wi-Fi hotspots created by the application when file transfer is initiated) to bypass authentication by trying to fetch a non-existing page. When the…

  • CVE-2019-15234HigApr 27, 2020
    risk 0.49cvss 7.5epss 0.02

    SHAREit through 4.0.6.177 does not check the full message length from the received packet header (which is used to allocate memory for the next set of data). This could lead to a system denial of service due to uncontrolled memory allocation. This is different from…

  • CVE-2019-14941HigApr 27, 2020
    risk 0.49cvss 7.5epss 0.02

    SHAREit through 4.0.6.177 does not check the body length from the received packet header (which is used to allocate memory for the next set of data). This could lead to a system denial of service due to uncontrolled memory allocation.

  • CVE-2019-9938MedMar 22, 2019
    risk 0.35cvss 5.3epss 0.01

    The SHAREit application before 4.0.42 for Android allows a remote attacker (on the same network or joining public "open" Wi-Fi hotspots created by the application when file transfer is initiated) to download arbitrary files from the device including contacts, photos, videos,…