Skip to main content

Kioware

5 CVEs product

Monthly

CVE-2024-3461 MEDIUM This Month

KioWare for Windows (versions all through 8.35) allows to brute force the PIN number, which protects the application from being closed, as there are no mechanisms preventing a user from excessively. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Microsoft Kioware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2024-3460 HIGH This Week

In KioWare for Windows (versions all through 8.34) it is possible to exit this software and use other already opened applications utilizing a short time window before the forced automatic logout. Rated high severity (CVSS 7.0). No vendor patch available.

Information Disclosure Microsoft Kioware
NVD
CVSS 3.1
7.0
EPSS
0.3%
CVE-2024-3459 HIGH This Week

KioWare for Windows (versions all through 8.34) allows to escape the environment by downloading PDF files, which then by default are opened in an external PDF viewer. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Microsoft Kioware
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2023-34642 HIGH This Week

KioWare for Windows through v8.33 was discovered to contain an incomplete blacklist filter for blocked dialog boxes on Windows 10. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Command Injection Microsoft Kioware
NVD GitHub
CVSS 3.1
7.8
EPSS
0.3%
CVE-2023-34641 HIGH This Week

KioWare for Windows through v8.33 was discovered to contain an incomplete blacklist filter for blocked dialog boxes on Windows 10. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Microsoft Kioware
NVD GitHub
CVSS 3.1
7.8
EPSS
0.2%
EPSS 0% CVSS 5.5
MEDIUM This Month

KioWare for Windows (versions all through 8.35) allows to brute force the PIN number, which protects the application from being closed, as there are no mechanisms preventing a user from excessively. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Microsoft Kioware
NVD
EPSS 0% CVSS 7.0
HIGH This Week

In KioWare for Windows (versions all through 8.34) it is possible to exit this software and use other already opened applications utilizing a short time window before the forced automatic logout. Rated high severity (CVSS 7.0). No vendor patch available.

Information Disclosure Microsoft Kioware
NVD
EPSS 0% CVSS 7.8
HIGH This Week

KioWare for Windows (versions all through 8.34) allows to escape the environment by downloading PDF files, which then by default are opened in an external PDF viewer. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Microsoft Kioware
NVD
EPSS 0% CVSS 7.8
HIGH This Week

KioWare for Windows through v8.33 was discovered to contain an incomplete blacklist filter for blocked dialog boxes on Windows 10. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Command Injection Microsoft Kioware
NVD GitHub
EPSS 0% CVSS 7.8
HIGH This Week

KioWare for Windows through v8.33 was discovered to contain an incomplete blacklist filter for blocked dialog boxes on Windows 10. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Microsoft Kioware
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy