2 matches found
CVE-2025-2516
The use of a weak cryptographic key pair in the signature verification process in WPS Office Kingsoft on Windows allows an attacker who successfully recovered the private key to sign components. As older versions of WPS Office did not validate the update server's certificate, an...
CVE-2025-2516
CVE-2025-2516 affects Kingsoft WPS Office on Windows, where signature verification uses a weak cryptographic key pair. If the private key is recovered, an attacker could sign components. The issue is compounded by older WPS Office versions not validating the update server certificate, enabling a ...