What is the severity of CVE-2017-10848?

CVE-2017-10848 has been categorized as a high-severity vulnerability due to its potential to grant attackers elevated privileges.

How do I fix CVE-2017-10848?

To fix CVE-2017-10848, update to the latest version of DocuWorks or DocuWorks Viewer Light that resolves this vulnerability.

What type of attack can exploit CVE-2017-10848?

CVE-2017-10848 can be exploited through the installation of a Trojan horse DLL from an untrusted search path.

Which versions of DocuWorks are affected by CVE-2017-10848?

DocuWorks versions 8.0.7 and earlier are affected by CVE-2017-10848.

Is CVE-2017-10848 specific to any operating systems?

CVE-2017-10848 is not limited to specific operating systems but impacts the DocuWorks applications across various platforms.

Vulnerability/
CVE-2017-10848

critical

9.3

CWE

426

1/9/2017

5/8/2024

CVE-2017-10848

First published: Fri Sep 01 2017(Updated: )

Untrusted search path vulnerability in Installers for DocuWorks 8.0.7 and earlier and DocuWorks Viewer Light published in Jul 2017 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.

Credit: vultures@jpcert.or.jp

Affected Software	Affected Version	How to fix
Fujixerox Docuworks	<=8.0.7
Fujixerox Docuworks Viewer Light	<=8.0.7

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2017-10848?
CVE-2017-10848 has been categorized as a high-severity vulnerability due to its potential to grant attackers elevated privileges.
How do I fix CVE-2017-10848?
To fix CVE-2017-10848, update to the latest version of DocuWorks or DocuWorks Viewer Light that resolves this vulnerability.
What type of attack can exploit CVE-2017-10848?
CVE-2017-10848 can be exploited through the installation of a Trojan horse DLL from an untrusted search path.
Which versions of DocuWorks are affected by CVE-2017-10848?
DocuWorks versions 8.0.7 and earlier are affected by CVE-2017-10848.
Is CVE-2017-10848 specific to any operating systems?
CVE-2017-10848 is not limited to specific operating systems but impacts the DocuWorks applications across various platforms.

collector/nvd-index
agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/weakness
agent/author
agent/last-modified-date
agent/event
agent/tags
agent/description
agent/first-publish-date
agent/source
vendor/fujixerox
canonical/fujixerox docuworks
version/fujixerox docuworks/8.0.7
canonical/fujixerox docuworks viewer light
version/fujixerox docuworks viewer light/8.0.7

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

Frequently Asked Questions

What is the severity of CVE-2017-10848?
CVE-2017-10848 has been categorized as a high-severity vulnerability due to its potential to grant attackers elevated privileges.
How do I fix CVE-2017-10848?
To fix CVE-2017-10848, update to the latest version of DocuWorks or DocuWorks Viewer Light that resolves this vulnerability.
What type of attack can exploit CVE-2017-10848?
CVE-2017-10848 can be exploited through the installation of a Trojan horse DLL from an untrusted search path.
Which versions of DocuWorks are affected by CVE-2017-10848?
DocuWorks versions 8.0.7 and earlier are affected by CVE-2017-10848.
Is CVE-2017-10848 specific to any operating systems?
CVE-2017-10848 is not limited to specific operating systems but impacts the DocuWorks applications across various platforms.