5.5 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
23.5%
KioWare through 8.33 on Windows sets KioScriptingUrlACL.AclActions.AllowHigh for the about:blank origin, which allows attackers to obtain SYSTEM access via KioUtils.Execute in JavaScript code.
github.com/olnor18/writeup/tree/master/CVE/CVE-2022-44875
www.kioware.com/versionhistory.aspx?pid=15