How severe is CVE-2024-3459?

CVE-2024-3459 has a CVSS v3 score of 8.4 (HIGH).

CVE-2024-3459

Name: kioware
Author: kioware

8.4HIGH

KioWare for Windows (versions all through 8.34) allows to escape the environment by downloading PDF files, which then by default are opened in an external PDF viewer. By using built-in functions of th

Опубликовано: 5/14/2024Обновлено: 2/12/2025

Описание

KioWare for Windows (versions all through 8.34) allows to escape the environment by downloading PDF files, which then by default are opened in an external PDF viewer. By using built-in functions of that viewer it is possible to launch a web browser, search through local files and, subsequently, launch any program with user privileges.

ИИ-АнализНа базе ИИ

Затронутые продукты

kiowarekioware

Ссылки

https://cert.pl/en/posts/2024/04/CVE-2024-3459
Broken Link
https://cert.pl/posts/2024/04/CVE-2024-3459
Broken Link
https://www.kioware.com/
Product
https://cert.pl/en/posts/2024/04/CVE-2024-3459
Broken Link
https://cert.pl/posts/2024/04/CVE-2024-3459
Broken Link
https://www.kioware.com/
Product