CVE-2024-7562
7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Summary
A potential elevated privilege issue has been reported with InstallShield built Standalone MSI setups having multiple InstallScript custom actions configured. All supported versions (InstallShield 2023 R2, InstallShield 2022 R2 and InstallShield 2021 R2) are affected by this issue.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Revenera | InstallShield | 2023 R2 | affected |
| Revenera | InstallShield | 2022 R2 | affected |
| Revenera | InstallShield | 2021 R2 | affected |
Weaknesses
- CWE-379: CWE-379
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.