PT-2023-20046 · Caphyon · Caphyon Advanced Installer
Published
2023-02-08
·
Updated
2023-02-19
·
CVE-2023-25396
CVSS v3.1
7.8
High
| Vector | AC:L/AV:L/A:H/C:H/I:H/PR:L/S:U/UI:N |
Name of the Vulnerable Software and Affected Versions
Caphyon Advanced Installer versions 20.0 and below
Description
The issue concerns a privilege escalation in the MSI repair functionality, allowing attackers to access and manipulate system files.
Recommendations
For versions 20.0 and below, update to a version above 20.0 to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Caphyon Advanced Installer