Cybersecurity Alerts

Microsoft Windows Installer Privilege Escalation Vulnerability

Microsoft Windows Installer contains a privilege escalation vulnerability when MSI packages process symbolic links, which allows attackers to bypass access restrictions to add or remove files.

Required Action

Apply updates per vendor instructions.

References

• https://nvd.nist.gov/vuln/detail/CVE-2020-0683