CVE-2024-13187 – Kingsoft WPS Office TCC Handler Code Injection Vulnerability

1月 8, 2025
6:16 pm

CVE ID : CVE-2024-13187

Published : Jan. 8, 2025, 5:15 p.m. | 1 hour, 1 minute ago

Description : A vulnerability was found in Kingsoft WPS Office 6.14.0 on macOS. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component TCC Handler. The manipulation leads to code injection. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-13187 – Kingsoft WPS Office TCC Handler Code Injection Vulnerability

Elvescore.io

Recent Posts

CVE-2023-35685 – Vulnerability Title: Red Hat Kernel Devicemem Server Physical Page UAF

CVE-2024-51442 – Minidlna Command Injection Vulnerability

CVE-2024-56771 – “Winvic Spinand Linux Kernel ECC Information Faking”

CVE-2024-56772 – Linux kernel: Uninitialized Free Pointer (UAF) vulnerability in kunit string-stream module.

CVE-2024-56773 – Linux Kernel kunit Null Pointer Dereference Vulnerability

CVE-2024-56774 – “Linux Btrfs Null-Pointer Dereference Vulnerability”

CVE-2024-13187 – Kingsoft WPS Office TCC Handler Code Injection Vulnerability

CVE-2024-13187 – Kingsoft WPS Office TCC Handler Code Injection Vulnerability