CVE-2024-3459

CVSS 3.1 Score 8.4 of 10 (high)

Details

Published May 14, 2024
CWE ID 424

Summary

CVE-2024-3459 is a cyber vulnerability affecting KioWare for Windows versions up to 8.34. This vulnerability allows the user to escape the environment by downloading PDF files, which are then opened in an external PDF viewer. Through this viewer, it is possible to launch a web browser, search through local files, and execute any program with user privileges. The vulnerability has a base severity of HIGH and poses a potential danger as it allows unauthorized access to sensitive information and can compromise the integrity of an organization's systems. To remediate this vulnerability, users should update their KioWare for Windows software to a version beyond 8.34.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future

Note: This is just a basic overview providing quick insights into CVE-2024-3459 information. Gain full access to comprehensive CVE data, third party vulnerabilities, compromised credentials and more with Recorded Future
  • Gain complete coverage of your cyber, third party, and physical attack surface
  • Proactively mitigate threats before they turn into costly attacks
  • Make fast, effective, data-driven decisions

Book your demo

Sign in

Back to Vulnerability Database