Privilege escalation vulnerability has been found in Wondershare Dr.Fone version 13.5.21. This vulnerability could allow an attacker to escalate privileges by replacing the binary ‘C:ProgramDataWondersharewsServicesElevationService.exe’ with a malicious binary. This binary will be executed by SYSTEM automatically.
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.