VYPR

Advanced Installer

by Canon

CVEs (3)

  • CVE-2025-47422HigJul 8, 2025
    risk 0.49cvss 7.5epss 0.00

    Advanced Installer before 22.6 has an uncontrolled search path element local privilege escalation vulnerability. When running as SYSTEM in certain configurations, Advanced Installer looks in standard-user writable locations for non-existent binaries and executes them as SYSTEM.…

  • CVE-2022-4956Sep 30, 2023
    risk 0.00cvss epss 0.00

    A vulnerability classified as critical has been found in Caphyon Advanced Installer 19.7. This affects an unknown part of the component WinSxS DLL Handler. The manipulation leads to uncontrolled search path. Attacking locally is a requirement. The exploit has been disclosed to…

  • CVE-2023-25396Feb 8, 2023
    risk 0.00cvss epss 0.00

    Privilege escalation in the MSI repair functionality in Caphyon Advanced Installer 20.0 and below allows attackers to access and manipulate system files.