CVE-2023-32548
https://notcve.org/view.php?id=CVE-2023-32548
OS command injection vulnerability exists in WPS Office version 10.8.0.6186. If a remote attacker who can conduct a man-in-the-middle attack connects the product to a malicious server and sends a specially crafted data, an arbitrary OS command may be executed on the system where the product is installed. • https://jvn.jp/en/jp/JVN36060509 https://support.kingsoft.jp/about/20230605.html • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVE-2022-24934
https://notcve.org/view.php?id=CVE-2022-24934
wpsupdater.exe in Kingsoft WPS Office through 11.2.0.10382 allows remote code execution by modifying HKEY_CURRENT_USER in the registry. El ejecutable wpsupdater.exe en Kingsoft WPS Office versiones hasta 11.2.0.10382, permite una ejecución de código remota mediante la modificación de HKEY_CURRENT_USER en el registro • https://github.com/webraybtl/CVE-2022-24934 https://github.com/nanaao/CVE-2022-24934 https://github.com/ASkyeye/WPS-CVE-2022-24934 https://github.com/MagicPiperSec/WPS-CVE-2022-24934 https://decoded.avast.io/luigicamastra/operation-dragon-castling-apt-group-targeting-betting-companies https://www.wps.com •
CVE-2022-26081
https://notcve.org/view.php?id=CVE-2022-26081
The installer of WPS Office Version 10.8.0.5745 insecurely load shcore.dll, allowing an attacker to execute arbitrary code with the privilege of the user invoking the installer. El instalador de WPS Office versión 10.8.0.5745, carga de forma no segura de shcore.dll, lo que permite a un atacante ejecutar código arbitrario con el privilegio del usuario invocando a el instalador • https://jvn.jp/en/jp/JVN21234459 https://support.kingsoft.jp/support-info/weakness.html • CWE-427: Uncontrolled Search Path Element •
CVE-2022-25969
https://notcve.org/view.php?id=CVE-2022-25969
The installer of WPS Office Version 10.8.0.6186 insecurely load VERSION.DLL (or some other DLLs), allowing an attacker to execute arbitrary code with the privilege of the user invoking the installer. El instalador de WPS Office Versión 10.8.0.6186, una carga no segura de VERSION.DLL (o algunas otras DLL), permitiendo a un atacante ejecutar código arbitrario con el privilegio del usuario invocando a el instalador • https://jvn.jp/en/jp/JVN21234459 https://support.kingsoft.jp/support-info/weakness.html • CWE-427: Uncontrolled Search Path Element •
CVE-2022-25943
https://notcve.org/view.php?id=CVE-2022-25943
The installer of WPS Office for Windows versions prior to v11.2.0.10258 fails to configure properly the ACL for the directory where the service program is installed. El instalador de WPS Office para versiones de Windows anteriores a v11.2.0.10258, no configura correctamente la ACL para el directorio donde es instalado el programa de servicio • https://github.com/webraybtl/CVE-2022-25943 https://github.com/HadiMed/KINGSOFT-WPS-Office-LPE https://jvn.jp/en/vu/JVNVU90673830 https://www.wps.com/whatsnew/pc/20210806 • CWE-276: Incorrect Default Permissions •