Security Advisory

CVE-2022-44875

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-03-06 00:00:00

Last updated 2025-03-06 20:41:24

Assigner mitre

State PUBLISHED

Description

KioWare through 8.33 on Windows sets KioScriptingUrlACL.AclActions.AllowHigh for the about:blank origin, which allows attackers to obtain SYSTEM access via KioUtils.Execute in JavaScript code.

← Browse all CVEs View on cve.org ↗