44 matches found
CVE-2022-27438
Caphyon Ltd Advanced Installer 19.3 and earlier and many products that use the updater from Advanced Installer Advanced Updater are affected by a remote code execution vulnerability via the CustomDetection parameter in the update check function. To exploit this vulnerability, a user must start an...
EUVD-2023-29352
Malicious code in bioql PyPI...
EUVD-2025-20501
Malicious code in bioql PyPI...
EUVD-2022-52209
Malicious code in bioql PyPI...
CVE-2025-47422
Advanced Installer before 22.6 has an uncontrolled search path element local privilege escalation vulnerability. When running as SYSTEM in certain configurations, Advanced Installer looks in standard-user writable locations for non-existent binaries and executes them as SYSTEM. A low-privileged...
CVE-2025-47422
Advanced Installer before 22.6 has an uncontrolled search path element local privilege escalation vulnerability. When running as SYSTEM in certain configurations, Advanced Installer looks in standard-user writable locations for non-existent binaries and executes them as SYSTEM. A low-privileged...
CVE-2025-47422
Advanced Installer before 22.6 has an uncontrolled search path element local privilege escalation vulnerability. When running as SYSTEM in certain configurations, Advanced Installer looks in standard-user writable locations for non-existent binaries and executes them as SYSTEM. A low-privileged...
PT-2025-28461 · Unknown · Advanced Installer
Name of the Vulnerable Software and Affected Versions: Advanced Installer versions prior to 22.6 Description: The issue is related to an uncontrolled search path element local privilege escalation. When running as SYSTEM in certain configurations, Advanced Installer looks in standard-user writabl...
Advanced Installer 安全漏洞
Advanced Installer is a packaged software from Advanced Installer open source. A security vulnerability exists in versions of Advanced Installer prior to 22.6, which stems from improper control of the search path element and may result in local elevation of privilege...
CVE-2025-47422
Advanced Installer before 22.6 has an uncontrolled search path element local privilege escalation vulnerability. When running as SYSTEM in certain configurations, Advanced Installer looks in standard-user writable locations for non-existent binaries and executes them as SYSTEM. A low-privileged...
CVE-2025-47422
CVE-2025-47422 affects Advanced Installer prior to 22.6. The flaw is an uncontrolled search path element that, when running as SYSTEM, can read non-existent binaries from standard-user writable locations and execute them with SYSTEM privileges, allowing arbitrary SYSTEM code execution if a malici...
CVE-2023-25396
Privilege escalation in the MSI repair functionality in Caphyon Advanced Installer 20.0 and below allows attackers to access and manipulate system files...
CVE-2022-4956
A vulnerability classified as critical has been found in Caphyon Advanced Installer 19.7. This affects an unknown part of the component WinSxS DLL Handler. The manipulation leads to uncontrolled search path. Attacking locally is a requirement. The exploit has been disclosed to the public and may ...
CVE-2022-4956
A vulnerability classified as critical has been found in Caphyon Advanced Installer 19.7. This affects an unknown part of the component WinSxS DLL Handler. The manipulation leads to uncontrolled search path. Attacking locally is a requirement. The exploit has been disclosed to the public and may ...
CVE-2022-4956
A vulnerability classified as critical has been found in Caphyon Advanced Installer 19.7. This affects an unknown part of the component WinSxS DLL Handler. The manipulation leads to uncontrolled search path. Attacking locally is a requirement. The exploit has been disclosed to the public and may ...
CVE-2022-4956 Caphyon Advanced Installer WinSxS DLL uncontrolled search path
A vulnerability classified as critical has been found in Caphyon Advanced Installer 19.7. This affects an unknown part of the component WinSxS DLL Handler. The manipulation leads to uncontrolled search path. Attacking locally is a requirement. The exploit has been disclosed to the public and may ...
CVE-2022-4956 Caphyon Advanced Installer WinSxS DLL uncontrolled search path
A vulnerability classified as critical has been found in Caphyon Advanced Installer 19.7. This affects an unknown part of the component WinSxS DLL Handler. The manipulation leads to uncontrolled search path. Attacking locally is a requirement. The exploit has been disclosed to the public and may ...
CVE-2022-4956
CVE-2022-4956 affects Caphyon Advanced Installer 19.7, impacting the WinSxS DLL Handler component and causing an uncontrolled search path. Exploitation requires local access; the exploit has been disclosed publicly. Upgrading to version 19.7.1 addresses the issue. No other technical details are p...
Caphyon Ltd Advanced Installer Code Issue Vulnerability
Caphyon Ltd Advanced Installer is a powerful and easy-to-use Windows installer authoring tool from Caphyon Romania. It is used to install, update and configure products safely and reliably. A code issue vulnerability exists in Caphyon Ltd Advanced Installer version 19.7. An attacker could exploit...
Cybercriminals Target Graphic Designers with Cryptojacking Malware
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Cybercriminals are taking advantage of a legitimate Windows tool known as Advanced Installer to compromise the computers of graphic designers with cryptocurrency mining malware. These scripts are designe...