Описание
An elevation of privilege vulnerability exists when the Windows Language Pack Installer improperly handles file operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context.
An attacker could exploit this vulnerability by running a specially crafted application on the victim system.
The update addresses the vulnerability by correcting the way the Windows Language Pack Installer handles file operations.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Одно из
EPSS
5.5 Medium
CVSS3
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
Связанные уязвимости
Windows Language Pack Installer Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when the Windows Language Pack Installer improperly handles file operations, aka 'Windows Language Pack Installer Elevation of Privilege Vulnerability'.
Уязвимость компонента Windows Language Pack Installer операционных систем Windows, позволяющая нарушителю запустить процессы в привилегированном процессе
EPSS
5.5 Medium
CVSS3
7.8 High
CVSS3
4.6 Medium
CVSS2