CVE-2024-7262

ENISA EUVD: EUVD-2024-48209 ↗

Exploited in the Wild ✓ Confirmed 0-Day ★ Google Project Zero

Triaged: March 3, 2026 1 article Published: 2024-08-15

VulnLookup ↗ NVD ↗ EUVD ↗ MITRE ↗ Advisory ↗ P0 Sheet ↗ CISA KEV ↗

EPSS Score

Source: FIRST.org · 2026-05-23

10.54%

probability

This CVE has a 10.54% probability of being exploited in the next 30 days.

0% Top 93.4th percentile of all CVEs 100%

CVSS v4.0 NEW

Source: VulnerabilityLookup (CIRCL)

9.3

CRITICAL

Attack Vector

Local

Attack Complexity

Low

Attack Requirements

None

Privileges Required

None

User Interaction

Passive

Vulnerable System Confidentiality Impact

High

Vulnerable System Integrity Impact

High

Vulnerable System Availability Impact

High

Subsequent System Confidentiality Impact

High

Subsequent System Integrity Impact

High

Subsequent System Availability Impact

High

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/AU:N/RE:L

CVSS v3.1

Source: NVD

7.8

HIGH

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Description

VulnerabilityLookup (CNA)

Improper path validation in promecefpluginhost.exe in Kingsoft WPS Office version ranging from 12.2.0.13110 to 12.2.0.16412 (exclusive) on Windows allows an attacker to load an arbitrary Windows library. The vulnerability was found weaponized as a single-click exploit in the form of a deceptive spreadsheet document

Affected Products

Kingsoft

WPS Office

12.2.0.13110

kingsoft

wps office

Kingsoft

WPS Office

12.2.0.13110 <12.2.0.16412

Attack Intelligence

CWE-22 · Path Traversal CWE-664 · Improper Control of a Resource Through its Lifetime CWE-706 · Use of Incorrectly-Resolved Name or Reference

Google Project Zero

Discovered

Feb. 29, 2024

https://www.wps.com/whatsnew/pc/20240422/

Signal Intelligence

Confidenceⓘ

92%

EPSS 10.54%

CVSS v4.0 9.3

CVSS v3.1 7.8

Mentions 1

Last Seen Aug 28, 2024

CNA Information

CNA Assigner

ESET

CNA Title

Arbitrary Code Execution in WPS Office

Analyst Note

CVE-2024-7262 demonstrates strong confirmation indicators: active weaponization as a single-click exploit detected in real attacks by threat actors, inclusion in Google Project Zero tracking, and critical CVSS ratings (v4=9.3). The vulnerability affects a widely-used office suite with confirmed exploitation targeting specific versions of WPS Office on Windows.

Threat Actors 1

APT-C-60

apt_group Information theft and espionage 🇰🇷 KR

Triage Info

Decided atMar 03, 2026

Published DateAug 15, 2024