The Windows Installer Elevation of Privilege Vulnerability refers to a security flaw in the Windows Installer service, which can allow an attacker to gain higher-level privileges than they should have, potentially leading to system compromise.

• Microsoft Windows 10 Version 1809 – 32-bit System and x64-based Systems
• Microsoft Windows Server 2019 – x64-Based System
• Microsoft Windows Server 2019 (Server Core Installation) – x64-Based System
• Microsoft Windows Server 2022 – x64-Based System
• Microsoft Windows 11 Version 21H2 – x64-Based System, ARM64-based System
• Microsoft Windows 10 Version 1607 – 32-bit System and x64-Based System
• Microsoft Windows Server 2016 – x64-Based System
• Microsoft Windows Server 2016 (Server Core Installation) – x64-Based System
• Microsoft Windows Server 2012 – x64-Based System
• Microsoft Windows Server 2012 (Server Core Installation) – x64-Based System
• Microsoft Windows Server 2012 R2 – x64-Based System
• Microsoft Windows Server 2012 R2 (Server Core Installation) – x64-Based System

If Vulnerabilities are not addressed, a cyber threat actor could exploit some of these vulnerabilities to take control of an affected system.

CERTVU Encourages users and administrators to review the below and apply necessary security updates.