Filtered by vendor Kingsoft
Subscriptions
Total
24 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2022-25949 | 1 Kingsoft | 1 Internet Security 9 Plus | 2024-08-03 | 7.8 High |
The kernel mode driver kwatch3 of KINGSOFT Internet Security 9 Plus Version 2010.06.23.247 fails to properly handle crafted inputs, leading to stack-based buffer overflow. | ||||
CVE-2022-25943 | 1 Kingsoft | 1 Wps Office | 2024-08-03 | 7.8 High |
The installer of WPS Office for Windows versions prior to v11.2.0.10258 fails to configure properly the ACL for the directory where the service program is installed. | ||||
CVE-2023-32548 | 1 Kingsoft | 1 Wps Office | 2024-08-02 | 8.1 High |
OS command injection vulnerability exists in WPS Office version 10.8.0.6186. If a remote attacker who can conduct a man-in-the-middle attack connects the product to a malicious server and sends a specially crafted data, an arbitrary OS command may be executed on the system where the product is installed. | ||||
CVE-2023-31275 | 1 Kingsoft | 1 Wps Office | 2024-08-02 | 8.8 High |
An uninitialized pointer use vulnerability exists in the functionality of WPS Office 11.2.0.11537 that handles Data elements in an Excel file. A specially crafted malformed file can lead to remote code execution. An attacker can provide a malicious file to trigger this vulnerability. |