CVE-2024-7263

✓ Confirmed 0-Day

Triaged: March 5, 2026 1 article

VulnLookup ↗ NVD ↗ MITRE ↗

EPSS Score

Source: FIRST.org · 2026-05-24

0.16%

probability

This CVE has a 0.16% probability of being exploited in the next 30 days.

0% Top 36.9th percentile of all CVEs 100%

CVSS score unavailable

Neither CIRCL nor NVD returned a CVSS score for this CVE. View on VulnerabilityLookup ↗

Attack Intelligence

CWE-22 · Path Traversal CWE-664 · Improper Control of a Resource Through its Lifetime CWE-706 · Use of Incorrectly-Resolved Name or Reference

South Korean hackers exploited WPS Office zero-day to deploy malware

BleepingComputer Aug 28, 2024

Signal Intelligence

Confidenceⓘ

78%

EPSS 0.16%

Mentions 1

Last Seen Aug 28, 2024

CNA Information

Analyst Note

CVE-2024-7263 was published 2024-08-15 and explicitly described as a zero-day exploited by South Korean hackers in the wild according to BleepingComputer. The vulnerability represents an incomplete patch for CVE-2024-7262, with exploitation occurring in active attacks prior to or concurrent with patch availability, meeting zero-day criteria.

Threat Actors 1

APT-C-60

apt_group Information theft and espionage 🇰🇷 KR

Triage Info

Decided atMar 05, 2026