Filtered by vendor Kingsoft Subscriptions
Total 24 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2022-25949 1 Kingsoft 1 Internet Security 9 Plus 2024-08-03 7.8 High
The kernel mode driver kwatch3 of KINGSOFT Internet Security 9 Plus Version 2010.06.23.247 fails to properly handle crafted inputs, leading to stack-based buffer overflow.
CVE-2022-25943 1 Kingsoft 1 Wps Office 2024-08-03 7.8 High
The installer of WPS Office for Windows versions prior to v11.2.0.10258 fails to configure properly the ACL for the directory where the service program is installed.
CVE-2023-32548 1 Kingsoft 1 Wps Office 2024-08-02 8.1 High
OS command injection vulnerability exists in WPS Office version 10.8.0.6186. If a remote attacker who can conduct a man-in-the-middle attack connects the product to a malicious server and sends a specially crafted data, an arbitrary OS command may be executed on the system where the product is installed.
CVE-2023-31275 1 Kingsoft 1 Wps Office 2024-08-02 8.8 High
An uninitialized pointer use vulnerability exists in the functionality of WPS Office 11.2.0.11537 that handles Data elements in an Excel file. A specially crafted malformed file can lead to remote code execution. An attacker can provide a malicious file to trigger this vulnerability.