First published: Wed Feb 08 2023(Updated: )
Privilege escalation in the MSI repair functionality in Caphyon Advanced Installer 20.0 and below allows attackers to access and manipulate system files.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Caphyon Advanced Installer | <=20.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2023-25396.
The affected software is Caphyon Advanced Installer version 20.0 and below.
The severity of CVE-2023-25396 is high with a CVSS score of 7.8.
Attackers can exploit this vulnerability to gain unauthorized access and manipulate system files.
Yes, a fix for CVE-2023-25396 is available in version 20.1 of Caphyon Advanced Installer.