Vendor
Inno Setup
Products
2
CVEs
3
Across products
3
Status
Private
Products
2- 2 CVEs
- 1 CVE
Recent CVEs
3| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-15595 | 0.00 | — | 0.00 | Mar 3, 2026 | Privilege escalation via dll hijacking in Inno Setup 6.2.1 and ealier versions. | |||
| CVE-2025-5335 | 0.00 | — | 0.00 | Jun 10, 2025 | A maliciously crafted binary file when downloaded could lead to escalation of privileges to NT AUTHORITY/SYSTEM due to an untrusted search path being utilized in the Autodesk Installer application. Exploitation of this vulnerability may lead to code execution. | |||
| CVE-2017-20051 | 0.00 | — | 0.00 | Jun 16, 2022 | A vulnerability was found in InnoSetup Installer. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to uncontrolled search path. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. |
- CVE-2025-15595Mar 3, 2026risk 0.00cvss —epss 0.00
Privilege escalation via dll hijacking in Inno Setup 6.2.1 and ealier versions.
- CVE-2025-5335Jun 10, 2025risk 0.00cvss —epss 0.00
A maliciously crafted binary file when downloaded could lead to escalation of privileges to NT AUTHORITY/SYSTEM due to an untrusted search path being utilized in the Autodesk Installer application. Exploitation of this vulnerability may lead to code execution.
- CVE-2017-20051Jun 16, 2022risk 0.00cvss —epss 0.00
A vulnerability was found in InnoSetup Installer. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to uncontrolled search path. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.