Kingsoft WPS Office 10.8.0.6186

CPE Details

Kingsoft WPS Office 10.8.0.6186
kingsoft
wps_office
10.8.0.6186
2022-03-23
12h44 +00:00
2022-05-16
17h28 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:kingsoft:wps_office:10.8.0.6186:*:*:*:*:*:*:*

Informations

Vendor

kingsoft

Product

wps_office

Version

10.8.0.6186

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2024-7263 2024-08-15 14h29 +00:00 Improper path validation in promecefpluginhost.exe in Kingsoft WPS Office version ranging from 12.2.0.13110 to 12.2.0.17153 (exclusive) on Windows allows an attacker to load an arbitrary Windows library. The patch released in version 12.2.0.16909 to mitigate CVE-2024-7262 was not restrictive enough. Another parameter was not properly sanitized which leads to the execution of an arbitrary Windows library.
9.3
Critique
CVE-2023-32548 2023-06-12 22h00 +00:00 OS command injection vulnerability exists in WPS Office version 10.8.0.6186. If a remote attacker who can conduct a man-in-the-middle attack connects the product to a malicious server and sends a specially crafted data, an arbitrary OS command may be executed on the system where the product is installed.
8.1
Haute
CVE-2022-25969 2022-03-17 16h15 +00:00 The installer of WPS Office Version 10.8.0.6186 insecurely load VERSION.DLL (or some other DLLs), allowing an attacker to execute arbitrary code with the privilege of the user invoking the installer.
7.8
Haute
CVE-2020-25291 2020-09-13 17h35 +00:00 GdiDrawHoriLineIAlt in Kingsoft WPS Office before 11.2.0.9403 allows remote heap corruption via a crafted PLTE chunk in PNG data within a Word document. This is related to QBrush::setMatrix in gui/painting/qbrush.cpp in Qt 4.x.
7.8
Haute