Olnor18

**Name of the Vulnerable Software and Affected Versions** KioWare versions through 8.33 **Description** The issue allows attackers to obtain SYSTEM access via KioUtils.Execute in JavaScript code because KioWare sets KioScriptingUrlACL.AclActions.AllowHigh for the about:blank origin. **Recommendations** For versions through 8.33, update to a version that does not set KioScriptingUrlACL.AclActions.AllowHigh for the about:blank origin to prevent attackers from obtaining SYSTEM access via KioUtils.Execute in JavaScript code.