CVE-2024-7262
Kingsoft WPS Office Path Traversal Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
YesDecision
Descriptions
Improper path validation in promecefpluginhost.exe in Kingsoft WPS Office version ranging from 12.2.0.13110 to 12.2.0.13489 on Windows allows an attacker to load an arbitrary Windows library.
Using the MHTML format allows an attacker to automatically deliver a malicious library on opening the document and a single user click on a crafted hyperlink leads to the execution of the library.
Improper path validation in promecefpluginhost.exe in Kingsoft WPS Office version ranging from 12.2.0.13110 to 12.2.0.16412 (exclusive) on Windows allows an attacker to load an arbitrary Windows library.
The vulnerability was found weaponized as a single-click exploit in the form of a deceptive spreadsheet document
Kingsoft WPS Office contains a path traversal vulnerability in promecefpluginhost.exe on Windows that allows an attacker to load an arbitrary Windows library.
CVSS Scores
SSVC
- Decision:Act
Timeline
- 2024-07-30 CVE Reserved
- 2024-08-15 CVE Published
- 2024-09-03 CVE Updated
- 2024-09-03 Exploited in Wild
- 2024-09-12 EPSS Updated
- 2024-09-24 KEV Due Date
- ---------- First Exploit
CWE
- CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CAPEC
- CAPEC-17: Using Malicious Files
References (1)
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Kingsoft Search vendor "Kingsoft" | WPS Office Search vendor "Kingsoft" for product "WPS Office" | >= 12.2.0.13110 < 12.2.0.16412 Search vendor "Kingsoft" for product "WPS Office" and version " >= 12.2.0.13110 < 12.2.0.16412" | en |
Affected
| ||||||