Lucene search
HistoryMar 29, 2023 - 9:15 p.m.
CVE-2021-41526
windows
installer
msi
vulnerability
privilege escalation
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7
Confidence
High
EPSS
0
Percentile
5.1%
A vulnerability has been reported in the windows installer (MSI) built with InstallScript custom action. This vulnerability may allow privilege escalation when invoked ‘repair’ of the MSI which has an InstallScript custom action.
Affected configurations
Node
flexerarevenera_installshieldRange<2021windows
ORflexerarevenera_installshieldMatch2021-windows
ORflexerarevenera_installshieldMatch2021r1windows
| Vendor | Product | Version | CPE |
|---|---|---|---|
| flexera | revenera_installshield | * | cpe:2.3:a:flexera:revenera_installshield:*:*:*:*:*:windows:*:* |
| flexera | revenera_installshield | 2021 | cpe:2.3:a:flexera:revenera_installshield:2021:-:*:*:*:windows:*:* |
| flexera | revenera_installshield | 2021 | cpe:2.3:a:flexera:revenera_installshield:2021:r1:*:*:*:windows:*:* |
Related
prion
prion
Privilege escalation
2023-03-29 21:15:00
Privilege escalation
2022-05-06 18:15:00
Privilege escalation
2022-05-06 18:15:00
vulnrichment
vulnrichment
CVE-2021-41526
2023-03-29 00:00:00
hp
hp
HP JetAdvantage Management Connector – Elevation of Privilege v.01
2022-02-10 00:00:00
cvelist
cvelist
CVE-2021-41526
2023-03-29 00:00:00
cve
cve
nvd
nvd
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7
Confidence
High
EPSS
0
Percentile
5.1%
Related for NVD:CVE-2021-41526