Kingsoft WPS Office <12.2.0.16412 ProMeceFPluginHost.exe Flaw Loads DLL
CVE-2024-7262 Published on August 15, 2024
Arbitrary Code Execution in WPS Office
Improper path validation in promecefpluginhost.exe in Kingsoft WPS Office version ranging from 12.2.0.13110 to 12.2.0.16412 (exclusive) on Windows allows an attacker to load an arbitrary Windows library.
The vulnerability was found weaponized as a single-click exploit in the form of a deceptive spreadsheet document
Known Exploited Vulnerability
This Kingsoft WPS Office Path Traversal Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. Kingsoft WPS Office contains a path traversal vulnerability in promecefpluginhost.exe on Windows that allows an attacker to load an arbitrary Windows library.
The following remediation steps are recommended / required by September 24, 2024: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Weakness Type
What is a Directory traversal Vulnerability?
The software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.
CVE-2024-7262 has been classified to as a Directory traversal vulnerability or weakness.
Products Associated with CVE-2024-7262
Want to know whenever a new CVE is published for Kingsoft Wps Office? stack.watch will email you.
Affected Versions
Kingsoft WPS Office:- Version 12.2.0.13110 and below 12.2.0.16412 is affected.
- Version 12.2.0.13110 and below 12.2.0.13489 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.