Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.6
CVSSv2

CVE-2022-25943

Published: 09/03/2022 Updated: 14/03/2022
CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 409
Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Kingsoft

Vulnerability Summary

The installer of WPS Office for Windows versions prior to v11.2.0.10258 fails to configure properly the ACL for the directory where the service program is installed.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

kingsoft wps office

Github Repositories

https://github.com/HadiMed/KINGSOFT-WPS-Office-LPE

CVE-2022-25943

JVN Advisory jvnjp/en/vu/JVNVU90673830/ The following CVE number have been assigned: CVE-2022-25943 KINGSOFT WPS Office LPE WPS Office is an office suite for Microsoft Windows, macOS, Linux, iOS, Android, and HarmonyOS developed by Zhuhai-based Chinese software developer Kingsoft Exploring WPS One of the nicest features that WPS offers is a cloud service to save you

References

CWE-276https://www.wps.com/whatsnew/pc/20210806/https://github.com/HadiMed/KINGSOFT-WPS-Office-LPEhttps://jvn.jp/en/vu/JVNVU90673830/https://nvd.nist.govhttps://github.com/HadiMed/KINGSOFT-WPS-Office-LPE
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-3400deserializationCVE-2024-21788CVE-2023-42433CVE-2024-21841CVE-2024-22095local file inclusionmemory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook