Lucene search
+L

6 matches found

NVD
NVD
added 2022/08/16 8:15 a.m.40 views

CVE-2022-36344

An unquoted search path vulnerability exists in 'JustSystems JUST Online Update for J-License' bundled with multiple products for corporate users as in Ichitaro through Pro5 and others. Since the affected product starts another program with an unquoted file path, a malicious file may be executed...

9.8CVSS0.00737EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/08/16 8:15 a.m.5 views

CVE-2022-36344

An unquoted search path vulnerability exists in 'JustSystems JUST Online Update for J-License' bundled with multiple products for corporate users as in Ichitaro through Pro5 and others. Since the affected product starts another program with an unquoted file path, a malicious file may be executed...

9.8CVSS7.2AI score0.00737EPSS
Exploits0References3
CVE
CVE
added 2022/08/16 7:3 a.m.78 views

CVE-2022-36344

CVE-2022-36344 describes an unquoted search path vulnerability in JustSystems JUST Online Update for J-License, bundled with various corporate products (Ichitaro through Pro5 and others). The root cause is an unquoted file path used to start a secondary program from the Windows service, enabling ...

9.8CVSS9.5AI score0.00737EPSS
Exploits0References2Affected Software60
ATTACKERKB
ATTACKERKB
added 2014/06/16 2:55 p.m.6 views

CVE-2014-2003

JustSystems JUST Online Update, as used in Ichitaro through 2014 and other products, does not properly validate signatures of update modules, which allows remote attackers to spoof modules and execute arbitrary code via a crafted signature...

7.6CVSS6.1AI score0.03592EPSS
Exploits0References5
Prion
Prion
added 2014/06/16 2:55 p.m.16 views

Code injection

JustSystems JUST Online Update, as used in Ichitaro through 2014 and other products, does not properly validate signatures of update modules, which allows remote attackers to spoof modules and execute arbitrary code via a crafted signature...

7.6CVSS8AI score0.03592EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2014/06/16 2:0 p.m.55 views

CVE-2014-2003

CVE-2014-2003 affects JustSystems products that bundle the JUST Online Update (e.g., Ichitaro) up through 2014. The issue is a flaw in how update-module signatures are validated, allowing a remote attacker to spoof modules and execute arbitrary code via a crafted signature. Root cause: insufficie...

7.6CVSS7.7AI score0.03592EPSS
Exploits0References4Affected Software2
Rows per page
Query Builder