kingsoft

Top products

The 15 most recently published vulnerabilities affecting kingsoft.

• CVE-2024-57096An issue in wps office before v.19302 allows a local attacker to obtain sensitive information via a crafted file.5.5May 14, 2025
• CVE-2024-13187Kingsoft WPS Office TCC code injection5.3Jan 8, 2025
• CVE-2024-7263Arbitrary Code Execution in WPS Office7.8Aug 15, 2024
• CVE-2024-7262Arbitrary Code Execution in WPS OfficeKEV7.8Aug 15, 2024
• CVE-2023-31275An uninitialized pointer use vulnerability exists in the functionality of WPS Office 11.2.0.11537 that handles Data elements in an Excel file. A specially crafted malformed file can lead to remote ...8.8Nov 27, 2023
• CVE-2023-32548OS command injection vulnerability exists in WPS Office version 10.8.0.6186. If a remote attacker who can conduct a man-in-the-middle attack connects the product to a malicious server and sends a s...8.1Jun 13, 2023
• CVE-2022-26511WPS Presentation 11.8.0.5745 insecurely load d3dx9_41.dll when opening .pps files('current directory type' DLL loading).7.8Mar 17, 2022
• CVE-2022-26081The installer of WPS Office Version 10.8.0.5745 insecurely load shcore.dll, allowing an attacker to execute arbitrary code with the privilege of the user invoking the installer.7.8Mar 17, 2022
• CVE-2022-25969The installer of WPS Office Version 10.8.0.6186 insecurely load VERSION.DLL (or some other DLLs), allowing an attacker to execute arbitrary code with the privilege of the user invoking the installer.7.8Mar 17, 2022
• CVE-2022-25949The kernel mode driver kwatch3 of KINGSOFT Internet Security 9 Plus Version 2010.06.23.247 fails to properly handle crafted inputs, leading to stack-based buffer overflow.7.8Mar 17, 2022
• CVE-2022-25943The installer of WPS Office for Windows versions prior to v11.2.0.10258 fails to configure properly the ACL for the directory where the service program is installed.7.8Mar 9, 2022
• CVE-2020-25291GdiDrawHoriLineIAlt in Kingsoft WPS Office before 11.2.0.9403 allows remote heap corruption via a crafted PLTE chunk in PNG data within a Word document. This is related to QBrush::setMatrix in gui/...7.8Sep 13, 2020
• CVE-2018-7546wpsmain.dll in Kingsoft WPS Office 2016 and Jinshan PDF 10.1.0.6621 allows remote attackers to cause a denial of service via a crafted pdf file.5.5Jul 18, 2018
• CVE-2018-9151A NULL pointer dereference bug in the function ObReferenceObjectByHandle in the Kingsoft Internet Security 9+ kernel driver KWatch3.sys allows local non-privileged users to crash the system via IOC...5.5Mar 30, 2018
• CVE-2012-4886Stack-based buffer overflow in wpsio.dll in Kingsoft WPS Office 2012 possibly 8.1.0.3238 allows remote attackers to execute arbitrary code via a long BSTR string.10.0Mar 24, 2014