Windows App Installer Spoofing Vulnerability Allows Elevation of Privilege
CVE-2024-38177
7.8HIGH
What is CVE-2024-38177?
The vulnerability in the Windows App Installer allows an attacker to potentially spoof application identities by manipulating how the installer identifies its source. This could enable the execution of malicious applications under the guise of trusted applications. Users should be aware of the risks associated with downloading applications from unverified sources and ensure their systems are updated to the latest versions to mitigate this risk.
Affected Version(s)
App Installer Unknown 1.0.0.0 < 1.22.11261.0