Lucene search
MitreCVE-2023-25396HistoryFeb 08, 2023 - 7:15 p.m.
CVE-2023-25396
2023-02-0819:15:12
mitre
web.nvd.nist.gov
21
cve-2023-25396
privilege escalation
msi repair
caphyon advanced installer
nvd
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7.7
Confidence
High
EPSS
0
Percentile
13.2%
Privilege escalation in the MSI repair functionality in Caphyon Advanced Installer 20.0 and below allows attackers to access and manipulate system files.
Affected configurations
Node
caphyonadvanced_installerRange≤20.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| caphyon | advanced_installer | * | cpe:2.3:a:caphyon:advanced_installer:*:*:*:*:*:*:*:* |
Related
prion
prion
Privilege escalation
2023-02-08 19:15:00
cvelist
cvelist
CVE-2023-25396
2023-02-08 00:00:00
nvd
nvd
CVE-2023-25396
2023-02-08 19:15:12
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7.7
Confidence
High
EPSS
0
Percentile
13.2%
Related for CVE-2023-25396