CVE-2019-25344 HIGH

CVE-2019-25344: MobileGo 8.5.0 - Insecure File Permissions

Vendor Wondershare
Product MobileGo
Weakness CWE-732
Published February 12, 2026
Last update March 5, 2026

CVSS base score

8.5/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

Wondershare MobileGo 8.5.0 contains an insecure file permissions vulnerability that allows local users to modify executable files in the application directory. Attackers can replace the original MobileGo.exe with a malicious executable to create a new user account and add it to the Administrators group with full system access.

Key dates

02Disclosure timeline

February 12, 2026 CVE published
March 5, 2026 Record updated