42 matches found
CVE-2026-50400
Stack-based buffer overflow in Windows App Installer allows an authorized attacker to elevate privileges locally...
CVE-2026-48571
Use after free in Windows App Installer allows an authorized attacker to elevate privileges locally...
CVE-2026-48572
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows App Installer allows an authorized attacker to elevate privileges locally...
CVE-2026-48571
The CVE-2026-48571 entry concerns a use-after-free vulnerability in Windows App Installer that enables an authorized attacker to achieve local privilege escalation. Affected component: Windows App Installer (Windows App Package Installer). Root cause: use-after-free condition leading to elevated ...
CVE-2026-48572
CVE-2026-48572 describes a race condition in Windows App Installer caused by concurrent execution on a shared resource with improper synchronization. An authorized attacker could elevate privileges locally. The CVE entry cites a high-severity score (CVSS 3.1: High) with local attack vector, high ...
Windows App Package Installer Elevation of Privilege Vulnerability
Use after free in Windows App Installer allows an authorized attacker to elevate privileges locally...
Windows App Package Installer Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows App Installer allows an authorized attacker to elevate privileges locally...
Windows App Package Installer Elevation of Privilege Vulnerability
Stack-based buffer overflow in Windows App Installer allows an authorized attacker to elevate privileges locally...
CVE-2026-23656
Insufficient verification of data authenticity in Windows App Installer allows an unauthorized attacker to perform spoofing over a network...
EUVD-2026-10579
Insufficient verification of data authenticity in Windows App Installer allows an unauthorized attacker to perform spoofing over a network...
EUVD-2026-10580
Insufficient verification of data authenticity in Windows App Installer allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-23656
Insufficient verification of data authenticity in Windows App Installer allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-23656
Insufficient verification of data authenticity in Windows App Installer allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-23656 Windows App Installer Spoofing Vulnerability
...
CVE-2026-23656 Windows App Installer Spoofing Vulnerability
...
CVE-2026-23656
CVE-2026-23656 involves Windows App Installer and is driven by insufficient verification of data authenticity, enabling an unauthenticated attacker to spoof over a network. Public details in connected advisories confirm this spoofing risk and tie it to Windows App Installer across Windows clients...
Windows App Installer Spoofing Vulnerability
Insufficient verification of data authenticity in Windows App Installer allows an unauthorized attacker to perform spoofing over a network...
PT-2026-24265
Уязвимость клиента удаленного рабочего стола Windows App Client ранее - Remote Desktop Client связана с недостаточной проверкой подлинности данных. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, проводить спуфинг-атаки...
Microsoft Windows App Installer 数据伪造问题漏洞
The Microsoft Windows App Installer is a tool provided by Microsoft Corporation for use with the Windows 10 and Windows 11 operating systems. It allows users to easily install applications by double-clicking .msix or .msixbundle files. This tool supports installation from websites, optional...
CVE-2026-21517 Windows App for Mac Installer Elevation of Privilege Vulnerability
...