CVE-2017-10848

high

Description

Untrusted search path vulnerability in Installers for DocuWorks 8.0.7 and earlier and DocuWorks Viewer Light published in Jul 2017 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.

References

https://jvn.jp/en/jp/JVN09769017/index.html

http://www.fujixerox.co.jp/company/news/notice/2017/0831_rectification_work.html

Details

Source: Mitre, NVD

Published: 2017-09-01

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H