CVE-2022-27502

RealVNC VNC Server 6.9.0 through 5.1.0 for Windows allows local privilege escalation because an installer repair operation executes %TEMP% files as SYSTEM...

CVE-2025-9068

A security issue exists within the Rockwell Automation Driver Package x64 Microsoft Installer File MSI repair functionality, installed with FTLinx. Authenticated attackers with valid Windows Users credentials can initiate a repair and hijack the resulting console window for vbpinstall.exe. This...

September 9, 2025—KB5065425 (OS Build 25398.1849)

September 9, 2025—KB5065425 OS Build 25398.1849 Windows Secure Boot certificate expiration Important: Secure Boot certificates used by most Windows devices are set to expire starting in June 2026. This might affect the ability of certain personal and business devices to boot securely if not updat...

CVE-2025-9068

A security issue exists within the Rockwell Automation Driver Package x64 Microsoft Installer File MSI repair functionality, installed with FTLinx. Authenticated attackers with valid Windows Users credentials can initiate a repair and hijack the resulting console window for vbpinstall.exe. This...

EUVD-2022-27925

Malicious code in bioql PyPI...

EUVD-2025-24817

Malicious code in bioql PyPI...

EUVD-2022-32003

Malicious code in bioql PyPI...

CVE-2025-7973

A security issue exists in FactoryTalk ViewPoint version 14.0 or below due to improper handling of MSI repair operations. During a repair, attackers can hijack the cscript.exe console window, which runs with SYSTEM privileges. This can be exploited to spawn an elevated command prompt, enabling fu...

PT-2025-33284 · Rockwell Automation · Factorytalk® Viewpoint

Name of the Vulnerable Software and Affected Versions: FactoryTalk ViewPoint versions 14.0 and earlier Description: A security issue exists in FactoryTalk ViewPoint due to improper handling of MSI repair operations. During a repair, attackers can hijack the cscript.exe console window, which runs...

CVE-2023-26603

JumpCloud Agent before 1.178.0 Creates a Temporary File in a Directory with Insecure Permissions. This allows privilege escalation to SYSTEM via a repair action in the installer...

CVE-2024-9473

A privilege escalation vulnerability in the Palo Alto Networks GlobalProtect app on Windows allows a locally authenticated non-administrative Windows user to escalate their privileges to NT AUTHORITY/SYSTEM through the use of the repair functionality offered by the .msi file used to install...

PT-2024-15262 · Softmaker +1 · Softmaker Office 2024 +3

Name of the Vulnerable Software and Affected Versions: SoftMaker Office 2024 / NX versions prior to revision 1214 SoftMaker FreeOffice 2014 versions prior to revision 1215 SoftMaker FreeOffice 2021 no fix available Description: An issue was discovered in the SoftMaker Office and FreeOffice MSI...

PT-2024-12106 · Jumpcloud · Jumpcloud Agent

Name of the Vulnerable Software and Affected Versions: JumpCloud Agent versions prior to 1.178.0 Description: The issue allows privilege escalation to SYSTEM via a repair action in the installer. This is due to the creation of a temporary file in a directory with insecure permissions...

CVE-2023-47145

IBM Db2 for Windows includes Db2 Connect Server 10.5, 11.1, and 11.5 could allow a local user to escalate their privileges to the SYSTEM user using the MSI repair functionality. IBM X-Force ID: 270402...

PT-2023-26176 · Unknown · Cryptomator

Name of the Vulnerable Software and Affected Versions: Cryptomator versions prior to 1.9.2 Description: The issue affects data encryption software for cloud storage, allowing local privilege escalation for low-privileged users if the software is already installed. This occurs because the repair...

CVE-2023-1412

An unprivileged non-admin user can exploit an Improper Access Control vulnerability in the Cloudflare WARP Client for Windows = 2022.12.582.0 to perform privileged operations with SYSTEM context by working with a combination of opportunistic locks oplock and symbolic links which can both be creat...

PT-2023-9632 · Qemu · Qemu Guest Agent

Name of the Vulnerable Software and Affected Versions: QEMU Guest Agent affected versions not specified Description: A flaw was found in the QEMU Guest Agent service for Windows, allowing a local unprivileged user to manipulate the QEMU Guest Agent's Windows installer via repair custom actions to...

SUSE CVE-2023-0664

A flaw was found in the QEMU Guest Agent service for Windows. A local unprivileged user may be able to manipulate the QEMU Guest Agent's Windows installer via repair custom actions to elevate their privileges on the system...

SUSE CVE-2022-26488

In Python before 3.10.3 on Windows, local users can gain privileges because the search path is inadequately secured. The installer may allow a local attacker to add user-writable directories to the system search path. To exploit, an administrator must have installed Python for all users and enabl...

CVE-2023-25396

Privilege escalation in the MSI repair functionality in Caphyon Advanced Installer 20.0 and below allows attackers to access and manipulate system files...