CVE-2024-3459

KioWare for Windows (versions all through 8.34) allows to escape the environment by downloading PDF files, which then by default are opened in an external PDF viewer. By using built-in functions of that viewer it is possible to launch a web browser, search through local files and, subsequently, launch any program with user privileges.

CVSS v3.0 7.8 HIGH

7.8^/10

CVSS v3.0 : HIGH

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://cert.pl/en/posts/2024/04/CVE-2024-3459	Broken Link
https://cert.pl/en/posts/2024/04/CVE-2024-3459	Broken Link
https://cert.pl/posts/2024/04/CVE-2024-3459	Broken Link
https://cert.pl/posts/2024/04/CVE-2024-3459	Broken Link
https://www.kioware.com/	Product
https://www.kioware.com/	Product

Configurations

Configuration 1 (hide)

cpe:2.3:a:kioware:kioware:*:*:*:*:*:windows:*:*

History

12 Feb 2025, 01:48

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.8
CPE		cpe:2.3:a:kioware:kioware::::::windows::*
CWE		NVD-CWE-Other
First Time		Kioware kioware Kioware
References	~~() https://cert.pl/en/posts/2024/04/CVE-2024-3459 -~~	() https://cert.pl/en/posts/2024/04/CVE-2024-3459 - Broken Link
References	~~() https://cert.pl/posts/2024/04/CVE-2024-3459 -~~	() https://cert.pl/posts/2024/04/CVE-2024-3459 - Broken Link
References	~~() https://www.kioware.com/ -~~	() https://www.kioware.com/ - Product

14 May 2024, 16:11

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-05-14 15:41

Updated : 2025-02-12 01:48

NVD link : CVE-2024-3459

Mitre link : CVE-2024-3459

JSON object : View

Products Affected

kioware

kioware

CWE

NVD-CWE-Other

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://cert.pl/en/posts/2024/04/CVE-2024-3459", "name": "https://cert.pl/en/posts/2024/04/CVE-2024-3459", "tags": ["Broken Link"], "refsource": ""}, {"url": "https://cert.pl/en/posts/2024/04/CVE-2024-3459", "name": "https://cert.pl/en/posts/2024/04/CVE-2024-3459", "tags": ["Broken Link"], "refsource": ""}, {"url": "https://cert.pl/posts/2024/04/CVE-2024-3459", "name": "https://cert.pl/posts/2024/04/CVE-2024-3459", "tags": ["Broken Link"], "refsource": ""}, {"url": "https://cert.pl/posts/2024/04/CVE-2024-3459", "name": "https://cert.pl/posts/2024/04/CVE-2024-3459", "tags": ["Broken Link"], "refsource": ""}, {"url": "https://www.kioware.com/", "name": "https://www.kioware.com/", "tags": ["Product"], "refsource": ""}, {"url": "https://www.kioware.com/", "name": "https://www.kioware.com/", "tags": ["Product"], "refsource": ""}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "KioWare for Windows (versions all\u00a0through 8.34)\u00a0allows to escape the environment by downloading PDF files, which then by default are opened in an external PDF viewer. By using built-in functions of that viewer it is possible to launch a web browser, search through local files and, subsequently, launch any program with user privileges.\n\n"}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2024-3459", "ASSIGNER": "cvd@cert.pl"}}, "impact": {"baseMetricV3": {"cvssV3": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}}, "publishedDate": "2024-05-14T15:41Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:kioware:kioware:*:*:*:*:*:windows:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "8.34"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2025-02-12T01:48Z"}