An elevation of privilege vulnerability exists in Windows Installer because of the way Windows Installer handles certain filesystem operations.To exploit the vulnerability, an attacker would require unprivileged execution on the victim system, aka 'Windows Installer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0779, CVE-2020-0798, CVE-2020-0842, CVE-2020-0843.
Weakness: Improper Privilege Management
The software does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
- Windows Server 2012
- Windows Server 2016
- Windows Server 2019
- Windows 10
- Windows 7
- Windows 8.1
- Windows Rt 8.1
- Windows Server 2008
This section is open source, for any additional information that enhances or clarifies the official advisory above.