PT-2024-26379 · Kingsoft · Wps Office

Name of the Vulnerable Software and Affected Versions: WPS Office versions prior to 17.0.0 Description: The issue arises from the application's failure to properly sanitize file names before processing them through external application interactions, leading to a form of path traversal. This...

MGASA-2014-0461 Updated hawtjni packages fix security vulnerability

The HawtJNI Library class wrote native libraries to a predictable file name in /tmp/ when the native libraries were bundled in a JAR file, and no custom library path was specified. A local attacker could overwrite these native libraries with malicious versions during the window between when HawtJ...