AgentReadyHomeAgent Listing

← Wondershare Filmora

Wondershare Filmora — agentic threat model

7.1AIVSS 7.1 · High

Wondershare Filmora presents a low-to-moderate agentic risk, acting primarily as a human-directed creative tool with AI-assisted features. Its primary security risks stem from local media processing vulnerabilities and the handling of social media integration credentials during direct export.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 6.3AARS uplift 0.81Factor sum 2.2/10Threat ×1.0Mitigation ×1.0
Autonomy of Action
0.30
Goal-Driven Planning
0.20
Self-Modification
0.00
Dynamic Tool Use
0.40
Persistent Memory
0.20
Contextual Awareness
0.30
Dynamic Identity
0.10
Multi-Agent Interactions
0.00
Non-Determinism
0.40
Opacity & Reflexivity
0.30

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models⚠ not certain from listing

Not certain from the listing — likely utilizes proprietary or third-party vision, audio, and generative models for AI-powered automation (e.g., smart cutout, audio enhancement). Threats include adversarial media inputs designed to crash the parser or bypass content filters.

L2 · Data Operations⚠ not certain from listing

Not certain from the listing — processes local user media assets (video, audio, images) and accesses an online library of effects and templates. Risks include local data exfiltration or processing malicious media files containing exploit payloads.

L3 · Agent Frameworks⚠ not certain from listing

Not certain from the listing — orchestration is likely driven by traditional UI event loops rather than an autonomous agent framework, though AI automation features could be vulnerable to prompt injection if they accept untrusted text/audio inputs.

L4 · Deployment & Infrastructure⚠ not certain from listing

Not certain from the listing — deployed as a cross-platform desktop and mobile application. Threats include insecure local storage of session data, local privilege escalation, and vulnerabilities in the application's auto-update mechanism.

L5 · Evaluation & Observability⚠ not certain from listing

Not certain from the listing — likely relies on standard application crash reporting and telemetry rather than dedicated AI guardrails or real-time LLM observability tools.

L6 · Security & Compliance (cross-cutting)⚠ not certain from listing

Not certain from the listing — compliance posture regarding user data privacy (e.g., GDPR/CCPA for uploaded or processed media) and local access control mechanisms are not specified in the directory.

L7 · Agent Ecosystem⚠ not certain from listing

Not certain from the listing — integrates with external social media platforms for direct export and sharing. Risks include OAuth token theft, session hijacking, or unauthorized publishing if the integration layer is compromised.

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).