Heap Corruption Vulnerability in Kingsoft WPS Office Products
CVE-2020-25291

7.8HIGH

Key Information:

Vendor: Kingsoft
Status: WPs Office
Vendor: CVE Published:; 13 September 2020

What is CVE-2020-25291?

A vulnerability in Kingsoft WPS Office prior to version 11.2.0.9403 allows for remote heap corruption. This occurs through a specially crafted PLTE chunk in PNG data embedded in a Word document, which can lead to instability or exploitation of the application. The flaw is associated with the QBrush::setMatrix function in the Qt 4.x framework, making it crucial for users to ensure their software is updated to safeguard against potential attacks.

References

http://zeifan.my/security/rce/heap/2020/09/03/wps-rce-hea...

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 13, 2020
Vulnerability Reserved
Sep 13, 2020