Lucene search
+L

42 matches found

NVD
NVD
added 4 days ago3 views

CVE-2026-50400

Stack-based buffer overflow in Windows App Installer allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00245EPSS
Exploits0References1
NVD
NVD
added 4 days ago5 views

CVE-2026-48571

Use after free in Windows App Installer allows an authorized attacker to elevate privileges locally...

7CVSS0.00214EPSS
Exploits0References1
NVD
NVD
added 4 days ago3 views

CVE-2026-48572

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows App Installer allows an authorized attacker to elevate privileges locally...

7CVSS0.00164EPSS
Exploits0References1
CVE
CVE
added 4 days ago7 views

CVE-2026-48571

The CVE-2026-48571 entry concerns a use-after-free vulnerability in Windows App Installer that enables an authorized attacker to achieve local privilege escalation. Affected component: Windows App Installer (Windows App Package Installer). Root cause: use-after-free condition leading to elevated ...

7CVSS6AI score0.00214EPSS
Exploits0References1Affected Software5
CVE
CVE
added 4 days ago7 views

CVE-2026-48572

CVE-2026-48572 describes a race condition in Windows App Installer caused by concurrent execution on a shared resource with improper synchronization. An authorized attacker could elevate privileges locally. The CVE entry cites a high-severity score (CVSS 3.1: High) with local attack vector, high ...

7CVSS6.1AI score0.00164EPSS
Exploits0References1Affected Software5
Microsoft CVE
Microsoft CVE
added 4 days ago6 views

Windows App Package Installer Elevation of Privilege Vulnerability

Use after free in Windows App Installer allows an authorized attacker to elevate privileges locally...

7CVSS6.1AI score0.00214EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 4 days ago9 views

Windows App Package Installer Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows App Installer allows an authorized attacker to elevate privileges locally...

7CVSS6.2AI score0.00164EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 4 days ago7 views

Windows App Package Installer Elevation of Privilege Vulnerability

Stack-based buffer overflow in Windows App Installer allows an authorized attacker to elevate privileges locally...

7.8CVSS6.2AI score0.00245EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/03/26 3:11 p.m.7 views

CVE-2026-23656

Insufficient verification of data authenticity in Windows App Installer allows an unauthorized attacker to perform spoofing over a network...

5.9CVSS5.8AI score0.00297EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/10 6:31 p.m.6 views

EUVD-2026-10579

Insufficient verification of data authenticity in Windows App Installer allows an unauthorized attacker to perform spoofing over a network...

5.9CVSS5.8AI score0.00297EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/10 6:31 p.m.5 views

EUVD-2026-10580

Insufficient verification of data authenticity in Windows App Installer allows an unauthorized attacker to perform spoofing over a network...

5.9CVSS5.8AI score0.00297EPSS
Exploits0References2
NVD
NVD
added 2026/03/10 6:18 p.m.7 views

CVE-2026-23656

Insufficient verification of data authenticity in Windows App Installer allows an unauthorized attacker to perform spoofing over a network...

5.9CVSS0.00297EPSS
Exploits0References1
OSV
OSV
added 2026/03/10 6:18 p.m.5 views

CVE-2026-23656

Insufficient verification of data authenticity in Windows App Installer allows an unauthorized attacker to perform spoofing over a network...

5.9CVSS5.8AI score0.00297EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/10 5:5 p.m.4 views

CVE-2026-23656 Windows App Installer Spoofing Vulnerability

...

5.9CVSS5.8AI score0.00297EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/10 5:5 p.m.32 views

CVE-2026-23656 Windows App Installer Spoofing Vulnerability

...

5.9CVSS0.00297EPSS
Exploits0References1
CVE
CVE
added 2026/03/10 5:5 p.m.72 views

CVE-2026-23656

CVE-2026-23656 involves Windows App Installer and is driven by insufficient verification of data authenticity, enabling an unauthenticated attacker to spoof over a network. Public details in connected advisories confirm this spoofing risk and tie it to Windows App Installer across Windows clients...

5.9CVSS5.8AI score0.00297EPSS
Exploits0References1Affected Software1
Microsoft CVE
Microsoft CVE
added 2026/03/10 2:0 p.m.8 views

Windows App Installer Spoofing Vulnerability

Insufficient verification of data authenticity in Windows App Installer allows an unauthorized attacker to perform spoofing over a network...

5.9CVSS5.8AI score0.00297EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.6 views

PT-2026-24265

Уязвимость клиента удаленного рабочего стола Windows App Client ранее - Remote Desktop Client связана с недостаточной проверкой подлинности данных. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, проводить спуфинг-атаки...

5.9CVSS5.8AI score0.00297EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/10 12:0 a.m.8 views

Microsoft Windows App Installer 数据伪造问题漏洞

The Microsoft Windows App Installer is a tool provided by Microsoft Corporation for use with the Windows 10 and Windows 11 operating systems. It allows users to easily install applications by double-clicking .msix or .msixbundle files. This tool supports installation from websites, optional...

5.9CVSS5.8AI score0.00297EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/10 5:51 p.m.23 views

CVE-2026-21517 Windows App for Mac Installer Elevation of Privilege Vulnerability

...

4.7CVSS0.00355EPSS
Exploits0References1
Rows per page
Query Builder