CVE-2022-36344
First published: Tue Aug 16 2022(Updated: )
An unquoted search path vulnerability exists in 'JustSystems JUST Online Update for J-License' bundled with multiple products for corporate users as in Ichitaro through Pro5 and others. Since the affected product starts another program with an unquoted file path, a malicious file may be executed with the privilege of the Windows service if it is placed in a certain path. Affected products are bundled with the following product series: Office and Office Integrated Software, ATOK, Hanako, JUST PDF, Shuriken, Homepage Builder, JUST School, JUST Smile Class, JUST Smile, JUST Frontier, JUST Jump, and Tri-De DetaProtect.
Credit: vultures@jpcert.or.jp
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Justsystems Atok Medical 2 | ||
| Justsystems Atok Medical 3 | ||
| Justsystems Atok Pro 3 | ||
| Justsystems Atok Pro 4 | ||
| Justsystems Atok Pro 5 | ||
| Justsystems Hanako Police 5 | ||
| Justsystems Hanako Police 6 | ||
| Justsystems Hanako Police 7 | ||
| Justsystems Hanako Pro 3 | ||
| Justsystems Hanako Pro 4 | ||
| Justsystems Hanako Pro 5 | ||
| Justsystems Homepage Builder 20 | ||
| Justsystems Homepage Builder 21 | ||
| Justsystems Homepage Builder 22 | ||
| Justsystems Ichitaro Government 10 | ||
| Justsystems Ichitaro Government 8 | ||
| Justsystems Ichitaro Government 9 | ||
| Justsystems Ichitaro Pro 3 | ||
| Justsystems Ichitaro Pro 4 | ||
| Justsystems Ichitaro Pro 5 | ||
| Justsystems Just Calc 3 | ||
| Justsystems Just Calc 4 | ||
| Justsystems Just Calc 5 | ||
| Justsystems Just Focus 3 | ||
| Justsystems Just Focus 4 | ||
| Justsystems Just Frontier 3 | ||
| Justsystems Just Government 2 | ||
| Justsystems Just Government 3 | ||
| Justsystems Just Government 4 | ||
| Justsystems Just Government 5 | ||
| Justsystems Just Jump 8 | ||
| Justsystems Just Jump Class | ||
| Justsystems Just Jump Class 2 | ||
| Justsystems Just Medical 2 | ||
| Justsystems Just Medical 3 | ||
| Justsystems Just Medical 4 | ||
| Justsystems Just Medical 5 | ||
| Justsystems Just Note 3 | ||
| Justsystems Just Note 4 | ||
| Justsystems Just Note 5 | ||
| Justsystems Just Office 2 | ||
| Justsystems Just Office 3 | ||
| Justsystems Just Office 4 | ||
| Justsystems Just Office 5 | ||
| Justsystems Just Pdf 3 | ||
| Justsystems Just Pdf 4 | ||
| Justsystems Just Pdf 5 | ||
| Justsystems Just Pdf 5 | ||
| Justsystems Just Police 2 | ||
| Justsystems Just Police 3 | ||
| Justsystems Just Police 4 | ||
| Justsystems Just Police 5 | ||
| Justsystems Just School 6 | ||
| Justsystems Just School 7 | ||
| Justsystems Just Smile 6 | ||
| Justsystems Just Smile 7 | ||
| Justsystems Just Smile 8 | ||
| Justsystems Just Smile Class 2 | ||
| Justsystems Shuriken Pro 6 | ||
| Justsystems Shuriken Pro 7 | ||
| Justsystems Tri-de Dataprotect |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/weakness
- agent/author
- agent/severity
- agent/references
- agent/type
- agent/description
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/justsystems
- canonical/justsystems atok medical 2
- canonical/justsystems atok medical 3
- canonical/justsystems atok pro 3
- canonical/justsystems atok pro 4
- canonical/justsystems atok pro 5
- canonical/justsystems hanako police 5
- canonical/justsystems hanako police 6
- canonical/justsystems hanako police 7
- canonical/justsystems hanako pro 3
- canonical/justsystems hanako pro 4
- canonical/justsystems hanako pro 5
- canonical/justsystems homepage builder 20
- canonical/justsystems homepage builder 21
- canonical/justsystems homepage builder 22
- canonical/justsystems ichitaro government 10
- canonical/justsystems ichitaro government 8
- canonical/justsystems ichitaro government 9
- canonical/justsystems ichitaro pro 3
- canonical/justsystems ichitaro pro 4
- canonical/justsystems ichitaro pro 5
- canonical/justsystems just calc 3
- canonical/justsystems just calc 4
- canonical/justsystems just calc 5
- canonical/justsystems just focus 3
- canonical/justsystems just focus 4
- canonical/justsystems just frontier 3
- canonical/justsystems just government 2
- canonical/justsystems just government 3
- canonical/justsystems just government 4
- canonical/justsystems just government 5
- canonical/justsystems just jump 8
- canonical/justsystems just jump class
- canonical/justsystems just jump class 2
- canonical/justsystems just medical 2
- canonical/justsystems just medical 3
- canonical/justsystems just medical 4
- canonical/justsystems just medical 5
- canonical/justsystems just note 3
- canonical/justsystems just note 4
- canonical/justsystems just note 5
- canonical/justsystems just office 2
- canonical/justsystems just office 3
- canonical/justsystems just office 4
- canonical/justsystems just office 5
- canonical/justsystems just pdf 3
- canonical/justsystems just pdf 4
- canonical/justsystems just pdf 5
- canonical/justsystems just police 2
- canonical/justsystems just police 3
- canonical/justsystems just police 4
- canonical/justsystems just police 5
- canonical/justsystems just school 6
- canonical/justsystems just school 7
- canonical/justsystems just smile 6
- canonical/justsystems just smile 7
- canonical/justsystems just smile 8
- canonical/justsystems just smile class 2
- canonical/justsystems shuriken pro 6
- canonical/justsystems shuriken pro 7
- canonical/justsystems tri-de dataprotect