Cybersecurity Alerts

Microsoft Windows Installer Improper Privilege Management Vulnerability

Microsoft Windows Installer contains an improper privilege management vulnerability that could allow an attacker to gain SYSTEM privileges.

Required Action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Weakness Classification

CWE-269

References

• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38014
• https://nvd.nist.gov/vuln/detail/CVE-2024-38014