Lucene search
K

172 matches found

Veeam
Veeam
added 2024/01/19 12:0 a.m.29 views

Veeam Installer Service Displays Previous Version Despite Being Updated

Challenge After upgrading Veeam Backup & Replication, the Veeam Installer Service on other machines managed by Veeam Backup & Replication may be listed in Apps and Features or Programs and Features with a version that does not match Veeam Backup & Replication version. For example, an environment...

7AI score
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2023/12/22 12:0 a.m.7 views

PT-2023-9006 · Microsoft · Windows Installer Service +1

Name of the Vulnerable Software and Affected Versions: Microsoft Windows Installer Service affected versions not specified Description: The issue is related to the Microsoft Windows Installer Service and involves an elevation of privilege vulnerability. This vulnerability can be exploited to allo...

7.8CVSS8.6AI score0.12258EPSS
Exploits0References6
Zero Day Initiative
Zero Day Initiative
added 2023/07/12 12:0 a.m.34 views

Microsoft Windows Installer Service Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target host system in order to exploit this vulnerability. The specific flaw exists within the Windows...

7CVSS7AI score0.00421EPSS
Exploits0References1
OSV
OSV
added 2023/04/19 8:15 p.m.6 views

CVE-2023-21081

In multiple functions of PackageInstallerService.java and related files, there is a possible way to bypass background activity launch restrictions due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is...

7.8CVSS5.9AI score0.00096EPSS
Exploits0References1
F5 Networks
F5 Networks
added 2023/02/21 6:46 p.m.62 views

K08503505: BIG-IP Edge Client for Windows vulnerability CVE-2021-23022

Security Advisory Description The BIG-IP Edge Client Windows Installer Service's temporary folder has weak file and folder permissions. CVE-2021-23022 Impact This vulnerability can be exploited to allow an unprivileged user to run a specially crafted application to gain privilege escalation on th...

7.8CVSS7.8AI score0.00228EPSS
Exploits0Affected Software2
Ivanti
Ivanti
added 2023/02/14 7:22 a.m.11 views

SA40007 - 2014-09 Security Bulletin: Pulse Connect Secure (PCS) and Pulse Secure Desktop client: User privilege escalation issue in Installer Service (CVE-2014-3811)

Ivanti 4th of March 2024 - This isn't an active SA and any new edits are part of an article maintenance project. A privilege escalation issue has been found and corrected in the Pulse Secure Installer Service client Windows platform only software. This issue could allow a non-administrator user t...

7.2CVSS6.8AI score0.00387EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2023/01/18 12:0 a.m.38 views

Microsoft Windows Installer Service Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Windows...

7.8CVSS7.7AI score0.00275EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2022/06/01 12:0 a.m.58 views

Microsoft Windows Installer Service Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Windows...

7.8CVSS6.2AI score0.00963EPSS
Exploits0References1
OSV
OSV
added 2022/05/05 5:15 p.m.4 views

CVE-2022-29263

On F5 BIG-IP APM 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x versions prior to 14.1.4.6, 13.1.x versions prior to 13.1.5, and all versions of 12.1.x and 11.6.x, as well as F5 BIG-IP APM Clients 7.x versions prior to 7.2.1.5, the BIG-IP Edge Client Component...

7.8CVSS5.8AI score0.002EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/05/05 12:0 a.m.6 views

The vulnerability of the Windows Installer installation service on Microsoft Windows operating systems allows a perpetrator to trigger a service failure.

The vulnerability of the Windows Installer installation service on Microsoft Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...

6.1CVSS6.3AI score0.00979EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/05/04 12:0 a.m.44 views

F5 Networks BIG-IP : BIG-IP Edge Client for Windows vulnerability (K33552735)

The version of F5 Networks BIG-IP installed on the remote host is prior to 13.1.5 / 14.1.4.6 / 15.1.5.1 / 16.1.2.2 / 17.0.0. It is, therefore, affected by a vulnerability as referenced in the K33552735 advisory. - On F5 BIG-IP APM 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to...

7.8CVSS7.5AI score0.002EPSS
Exploits0References2
Veeam
Veeam
added 2022/02/21 12:0 a.m.478 views

Updating Veeam Installer Service fails with "Another version of this product is already installed"

Challenge When updating the Veeam Agent for Microsoft Windows deployment on a machine that is part of a 'Computers with pre-installed agents' Protection Group, attempting to run VeeamInstallerSvc.msi causes the error message: Another version of this product is already installed. Installation of...

6.6AI score
Exploits0Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/12/03 12:0 a.m.5 views

The vulnerability of the Windows Installer installer service on the Windows operating system allows a hacker to increase their privileges.

The vulnerability of the Windows Installer installer service stems from deficiencies in the handling of group access policies. Exploiting this vulnerability can allow an attacker to enhance their privileges by executing a specially crafted executable file...

6.6CVSS7.7AI score0.11963EPSS
Exploits0References4
Zero Day Initiative
Zero Day Initiative
added 2021/09/16 12:0 a.m.56 views

Microsoft Windows Installer Service Directory Junction Denial-of-Service Vulnerability

This vulnerability allows local attackers to create a denial-of-service condition on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within t...

6.1CVSS4.8AI score0.00979EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/07/12 12:0 a.m.37 views

F5 Networks BIG-IP : BIG-IP Edge Client for Windows vulnerability (K08503505)

The version of F5 Networks BIG-IP installed on the remote host is prior to 14.1.4.4 / 15.1.3.1 / 16.1.0. It is, therefore, affected by a vulnerability as referenced in the K08503505 advisory. - On version 7.2.1.x before 7.2.1.3 and 7.1.x before 7.1.9.9 Update 1, the BIG-IP Edge Client Windows...

7.8CVSS7.5AI score0.00228EPSS
Exploits0References2
NVD
NVD
added 2021/06/10 4:15 p.m.43 views

CVE-2021-23022

On version 7.2.1.x before 7.2.1.3 and 7.1.x before 7.1.9.9 Update 1, the BIG-IP Edge Client Windows Installer Service's temporary folder has weak file and folder permissions. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

7.8CVSS0.00228EPSS
Exploits0References1
CVE
CVE
added 2021/06/10 3:6 p.m.84 views

CVE-2021-23022

CVE-2021-23022 affects the BIG-IP Edge Client for Windows: the Windows Installer Service temporary folder has weak permissions, enabling local privilege escalation. Affected versions are 7.2.1.x before 7.2.1.3 and 7.1.x before 7.1.9.9 Update 1; non-vulnerable/End of Technical Support versions are...

7.8CVSS7.6AI score0.00228EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2021/06/10 3:6 p.m.43 views

CVE-2021-23022

On version 7.2.1.x before 7.2.1.3 and 7.1.x before 7.1.9.9 Update 1, the BIG-IP Edge Client Windows Installer Service's temporary folder has weak file and folder permissions. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

7.9AI score0.00228EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2021/03/30 12:0 a.m.7 views

The vulnerability of the ActiveX Installer Service on the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the ActiveX Installer Service component in the Windows operating system is related to insecure management of privileges. Exploiting this vulnerability can allow attackers to enhance their privileges...

7.8CVSS5.9AI score0.00834EPSS
Exploits0References3
Zero Day Initiative
Zero Day Initiative
added 2021/03/15 12:0 a.m.51 views

Microsoft Windows Installer Service Directory Junction Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Windows...

7.8CVSS6.2AI score0.01198EPSS
Exploits0References1
Rows per page
Query Builder