EUVD-2025-210131

Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed Windows MSI file may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This issue affects Avira Antivirus on Windows, macOS, and Linux for engine builds before...

PT-2026-49017

Name of the Vulnerable Software and Affected Versions Avira Antivirus versions prior to 8.3.70.56 Description A heap buffer out-of-bounds read occurs in the antivirus engine when scanning a malformed Windows MSI file. This issue may lead to local execution of code or a denial-of-service of the...

CVE-2026-33430

Briefcase (Python) vulnerability CVE-2026-33430 affects Windows MSI installers built with Briefcase before 0.3.26. When a project is installed for All Users, the installer directory inherits the parent’s permissions, potentially allowing a low-privilege user to replace/modify binaries and cause e...

Important: Red Hat Security Advisory: spice-client-win security update

An update for spice-client-win is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability...

CVE-2025-9067

A security issue exists within the x86 Microsoft Installer File MSI, installed with FTLinx. Authenticated attackers with valid Windows user credentials can initiate a repair and hijack the resulting console window. This allows the launching of a command prompt running with SYSTEM-level privileges...

MongoDB 安全漏洞

MongoDB is a document-oriented database management system from the American company MongoDB. A security vulnerability exists in MongoDB versions 2.0.0 through 2.14.24, which stems from a failure to set an ACL for a custom installation directory when installing via MSI on Windows, which could resu...

CVE-2023-44219

A local privilege escalation vulnerability in SonicWall Directory Services Connector Windows MSI client 4.1.21 and earlier versions allows a local low-privileged user to gain system privileges through running the recovery feature...

Privilege escalation

A local privilege escalation vulnerability in SonicWall Directory Services Connector Windows MSI client 4.1.21 and earlier versions allows a local low-privileged user to gain system privileges through running the recovery feature...

CVE-2023-44219

A local privilege escalation vulnerability in SonicWall Directory Services Connector Windows MSI client 4.1.21 and earlier versions allows a local low-privileged user to gain system privileges through running the recovery feature...

PT-2023-5681 · Sonicwall · Sonicwall Net Extender Msi Client

Name of the Vulnerable Software and Affected Versions: SonicWall Net Extender MSI client for Windows versions 10.2.336 and earlier Description: A local privilege escalation issue in the SonicWall Net Extender MSI client allows a local low-privileged user to gain system privileges through running...