CVE-2022-27502

RealVNC VNC Server 6.9.0 through 5.1.0 for Windows allows local privilege escalation because an installer repair operation executes %TEMP% files as SYSTEM...

CVE-2025-9068

A security issue exists within the Rockwell Automation Driver Package x64 Microsoft Installer File MSI repair functionality, installed with FTLinx. Authenticated attackers with valid Windows Users credentials can initiate a repair and hijack the resulting console window for vbpinstall.exe. This...

September 9, 2025—KB5065425 (OS Build 25398.1849)

September 9, 2025—KB5065425 OS Build 25398.1849 Windows Secure Boot certificate expirationImportant: Secure Boot certificates used by most Windows devices are set to expire starting in June 2026. Microsoft has been updating these certificates on consumer and non-managed business devices for the...

CVE-2025-9068

A security issue exists within the Rockwell Automation Driver Package x64 Microsoft Installer File MSI repair functionality, installed with FTLinx. Authenticated attackers with valid Windows Users credentials can initiate a repair and hijack the resulting console window for vbpinstall.exe. This...

EUVD-2022-27925

Malicious code in bioql PyPI...

EUVD-2025-24817

Malicious code in bioql PyPI...

EUVD-2022-32003

Malicious code in bioql PyPI...

CVE-2025-7973

A security issue exists in FactoryTalk ViewPoint version 14.0 or below due to improper handling of MSI repair operations. During a repair, attackers can hijack the cscript.exe console window, which runs with SYSTEM privileges. This can be exploited to spawn an elevated command prompt, enabling fu...

PT-2025-33284 · Rockwell Automation · Factorytalk® Viewpoint

Name of the Vulnerable Software and Affected Versions: FactoryTalk ViewPoint versions 14.0 and earlier Description: A security issue exists in FactoryTalk ViewPoint due to improper handling of MSI repair operations. During a repair, attackers can hijack the cscript.exe console window, which runs...

CVE-2023-26603

JumpCloud Agent before 1.178.0 Creates a Temporary File in a Directory with Insecure Permissions. This allows privilege escalation to SYSTEM via a repair action in the installer...

CVE-2024-9473

A privilege escalation vulnerability in the Palo Alto Networks GlobalProtect app on Windows allows a locally authenticated non-administrative Windows user to escalate their privileges to NT AUTHORITY/SYSTEM through the use of the repair functionality offered by the .msi file used to install...

PT-2024-15262 · Softmaker +1 · Softmaker Office 2024 +3

Name of the Vulnerable Software and Affected Versions: SoftMaker Office 2024 / NX versions prior to revision 1214 SoftMaker FreeOffice 2014 versions prior to revision 1215 SoftMaker FreeOffice 2021 no fix available Description: An issue was discovered in the SoftMaker Office and FreeOffice MSI...

PT-2024-12106 · Jumpcloud · Jumpcloud Agent

Name of the Vulnerable Software and Affected Versions: JumpCloud Agent versions prior to 1.178.0 Description: The issue allows privilege escalation to SYSTEM via a repair action in the installer. This is due to the creation of a temporary file in a directory with insecure permissions...

CVE-2023-47145

IBM Db2 for Windows includes Db2 Connect Server 10.5, 11.1, and 11.5 could allow a local user to escalate their privileges to the SYSTEM user using the MSI repair functionality. IBM X-Force ID: 270402...

PT-2023-26176 · Unknown · Cryptomator

Name of the Vulnerable Software and Affected Versions: Cryptomator versions prior to 1.9.2 Description: The issue affects data encryption software for cloud storage, allowing local privilege escalation for low-privileged users if the software is already installed. This occurs because the repair...

CVE-2023-1412

An unprivileged non-admin user can exploit an Improper Access Control vulnerability in the Cloudflare WARP Client for Windows = 2022.12.582.0 to perform privileged operations with SYSTEM context by working with a combination of opportunistic locks oplock and symbolic links which can both be creat...

PT-2023-9632 · Qemu · Qemu Guest Agent

Name of the Vulnerable Software and Affected Versions: QEMU Guest Agent affected versions not specified Description: A flaw was found in the QEMU Guest Agent service for Windows, allowing a local unprivileged user to manipulate the QEMU Guest Agent's Windows installer via repair custom actions to...

SUSE CVE-2023-0664

A flaw was found in the QEMU Guest Agent service for Windows. A local unprivileged user may be able to manipulate the QEMU Guest Agent's Windows installer via repair custom actions to elevate their privileges on the system...

SUSE CVE-2022-26488

In Python before 3.10.3 on Windows, local users can gain privileges because the search path is inadequately secured. The installer may allow a local attacker to add user-writable directories to the system search path. To exploit, an administrator must have installed Python for all users and enabl...

CVE-2023-25396

Privilege escalation in the MSI repair functionality in Caphyon Advanced Installer 20.0 and below allows attackers to access and manipulate system files...