Known Vulnerabilities for products from Kingsoft
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Kingsoft".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-32548 json | OS command injection vulnerability exists in WPS Office version 10.8.0.6186. If a remote attacker who can conduct a man-in-th... | 8.1 - HIGH | 2023-06-13 | 2023-06-21 |
| CVE-2023-31275 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.8 - HIGH | 2023-11-27 | 2023-12-01 |
| CVE-2022-26511 json | WPS Presentation 11.8.0.5745 insecurely load d3dx9_41.dll when opening .pps files('current directory type' DLL loading). | 7.8 - HIGH | 2022-03-17 | 2022-03-24 |
| CVE-2022-26081 json | The installer of WPS Office Version 10.8.0.5745 insecurely load shcore.dll, allowing an attacker to execute arbitrary code wi... | 7.8 - HIGH | 2022-03-17 | 2022-03-24 |
| CVE-2022-25969 json | The installer of WPS Office Version 10.8.0.6186 insecurely load VERSION.DLL (or some other DLLs), allowing an attacker to exe... | 7.8 - HIGH | 2022-03-17 | 2022-03-23 |
| CVE-2022-25949 json | The kernel mode driver kwatch3 of KINGSOFT Internet Security 9 Plus Version 2010.06.23.247 fails to properly handle crafted i... | 7.8 - HIGH | 2022-03-17 | 2022-03-23 |
| CVE-2022-25943 json | The installer of WPS Office for Windows versions prior to v11.2.0.10258 fails to configure properly the ACL for the directory... | 7.8 - HIGH | 2022-03-09 | 2022-03-14 |
| CVE-2020-25291 json | GdiDrawHoriLineIAlt in Kingsoft WPS Office before 11.2.0.9403 allows remote heap corruption via a crafted PLTE chunk in PNG d... | 7.8 - HIGH | 2020-09-13 | 2020-09-17 |
| CVE-2018-9151 json | A NULL pointer dereference bug in the function ObReferenceObjectByHandle in the Kingsoft Internet Security 9+ kernel driver K... | 5.5 - MEDIUM | 2018-03-30 | 2018-04-18 |
| CVE-2018-7546 json | wpsmain.dll in Kingsoft WPS Office 2016 and Jinshan PDF 10.1.0.6621 allows remote attackers to cause a denial of service via ... | 5.5 - MEDIUM | 2018-07-18 | 2018-09-14 |
| CVE-2013-5999 json | Kingsoft KDrive Personal before 1.21.0.1880 on Windows does not verify X.509 certificates from SSL servers, which allows man-... | Not Provided | 2013-11-22 | 2026-04-29 |
| CVE-2013-3934 json | Stack-based buffer overflow in Kingsoft Writer 2012 8.1.0.3030, as used in Kingsoft Office 2013 before 9.1.0.4256, allows rem... | Not Provided | 2013-09-10 | 2026-04-29 |
| CVE-2013-0723 json | Multiple heap-based buffer overflows in etxrw.dll in Kingsoft Spreadsheets 2012 8.1.0.3030 allow remote attackers to cause a ... | Not Provided | 2013-07-29 | 2026-04-29 |
| CVE-2013-0710 json | Buffer overflow in Kingsoft Writer 2007 and 2010 before 2724 allows remote attackers to execute arbitrary code via a crafted ... | Not Provided | 2013-03-05 | 2026-04-29 |
| CVE-2012-4886 json | Stack-based buffer overflow in wpsio.dll in Kingsoft WPS Office 2012 possibly 8.1.0.3238 allows remote attackers to execute a... | 10 - HIGH | 2014-03-24 | 2017-08-29 |
| CVE-2012-0321 json | Unspecified vulnerability in the device driver in Kingsoft Internet Security 2011 allows local users to cause a denial of ser... | Not Provided | 2012-03-02 | 2026-04-29 |
| CVE-2011-0515 json | KisKrnl.sys 2011.1.13.89 and earlier in Kingsoft AntiVirus 2011 SP5.2 allows local users to cause a denial of service (crash)... | Not Provided | 2011-01-20 | 2026-04-29 |
| CVE-2010-5164 json | Race condition in KingSoft Personal Firewall 9 Plus 2009.05.07.70 on Windows XP allows local users to bypass kernel-mode hook... | Not Provided | 2012-08-25 | 2026-04-29 |
| CVE-2010-3396 json | Buffer overflow in kavfm.sys in Kingsoft Antivirus 2010.04.26.648 and earlier allows local users to execute arbitrary code vi... | Not Provided | 2010-09-15 | 2026-04-29 |
| CVE-2010-2031 json | KAVSafe.sys 2010.4.14.609 and earlier, as used in Kingsoft Webshield 3.5.1.2 and earlier, allows local users to overwrite arb... | Not Provided | 2010-05-24 | 2026-04-29 |
Known software with vulnerabilities from Kingsoft
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Kingsoft | Internet Security 9 Plus | 2010.06.23.247 |
| Application | Kingsoft | Kdrive | 1.21.0.1878 |
| Application | Kingsoft | Kingsoft Antivirus | 2010.04.26.648 |
| Application | Kingsoft | Office 2012 | 8.1.0.3238 |
| Application | Kingsoft | Office 2013 | 9.1.0.4256 |
| Application | Kingsoft | Personal Firewall 9 | 2009.05.07.70 |
| Application | Kingsoft | Spreadsheets 2012 | 8.1.0.3030 |
| Application | Kingsoft | Wps Office | - |
| Application | Kingsoft | Writer 2007 | - |
| Application | Kingsoft | Writer 2010 | 2723 |
| Application | Kingsoft | Writer 2012 | 8.1.0.3030 |