CVE-2022-27438
N/A
N/A
Summary
Caphyon Ltd Advanced Installer 19.3 and earlier and many products that use the updater from Advanced Installer (Advanced Updater) are affected by a remote code execution vulnerability via the CustomDetection parameter in the update check function. To exploit this vulnerability, a user must start an affected installation to trigger the update check.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://advanced.com
- http://caphyon.com
- https://gerr.re/posts/cve-2022-27438/
- https://www.advancedinstaller.com/security-updates-auto-updater.html
References
- https://gerr.re/posts/cve-2022-27438/
- https://www.advancedinstaller.com/security-updates-auto-updater.html
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.