CVE-2017-10848

2017-09-0114:00:00

jpcert

www.cve.org

0.001 Low

EPSS

Percentile

27.2%

JSON

Untrusted search path vulnerability in Installers for DocuWorks 8.0.7 and earlier and DocuWorks Viewer Light published in Jul 2017 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.

CNA Affected

[
  {
    "product": "Installer for DocuWorks",
    "vendor": "Fuji Xerox Co.,Ltd.",
    "versions": [
      {
        "status": "affected",
        "version": "8.0.7 and earlier"
      }
    ]
  },
  {
    "product": "Installer for DocuWorks Viewer Light",
    "vendor": "Fuji Xerox Co.,Ltd.",
    "versions": [
      {
        "status": "affected",
        "version": "published in Jul 2017 and earlier"
      }
    ]
  }
]