4 matches found
CVE-2021-40399
An exploitable use-after-free vulnerability exists in WPS Spreadsheets ET as part of WPS Office, version 11.2.0.10351. A specially-crafted XLS file can cause a use-after-free condition, resulting in remote code execution. An attacker needs to provide a malformed file to the victim to trigger the...
CVE-2021-40399
An exploitable use-after-free vulnerability exists in WPS Spreadsheets ET as part of WPS Office, version 11.2.0.10351. A specially-crafted XLS file can cause a use-after-free condition, resulting in remote code execution. An attacker needs to provide a malformed file to the victim to trigger the...
Design/Logic Flaw
An exploitable use-after-free vulnerability exists in WPS Spreadsheets ET as part of WPS Office, version 11.2.0.10351. A specially-crafted XLS file can cause a use-after-free condition, resulting in remote code execution. An attacker needs to provide a malformed file to the victim to trigger the...
CVE-2021-40399
The CVE-2021-40399 issue affects WPS Office’s Spreadsheets (ET) component, specifically WPS Spreadsheets version 11.2.0.10351. The root cause is a use-after-free in the HTML/XML handling of XLS content, leading to remote code execution when a specially crafted XLS file is opened. Public analysis ...