Lucene search
HistoryApr 11, 2024 - 9:15 p.m.
CVE-2024-25376
thesycon
tusbaudio
msi
arbitrary code execution
repair mode
cve-2024-25376
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7.2
Confidence
High
EPSS
0
Percentile
9.0%
An issue discovered in Thesycon Software Solutions Gmbh & Co. KG TUSBAudio MSI-based installers before 5.68.0 allows a local attacker to execute arbitrary code via the msiexec.exe repair mode.
Related
cve
cve
CVE-2024-25376
2024-04-11 21:15:07
cvelist
cvelist
CVE-2024-25376
2024-04-11 00:00:00
githubexploit
githubexploit
Exploit for CVE-2024-25376
2024-02-24 09:30:45
vulnrichment
vulnrichment
CVE-2024-25376
2024-04-11 00:00:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7.2
Confidence
High
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2024-25376