This page lists publicly disclosed CVE vulnerabilities affecting microsoft app_installer (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2024-38177 | Windows App Installer Spoofing Vulnerability | [email protected] | 7.8 | 0.86% | 2024-08-13 | 2024-08-16 |
| CVE-2021-43890 KEV | We have investigated reports of a spoofing vulnerability in AppX installer that affects Microsoft Windows. Microsoft is aware of attacks that attempt to exploit this vulnerability by using specially crafted packages that include the malware family known as Emotet/Trickbot/Bazaloader. An attacker could craft a malicious attachment to be used in phishing campaigns. The attacker would then have to convince the user to open the specially crafted attachment. Users whose accounts are configured to hav | [email protected] | 7.1 | 10.29% | 2021-12-15 | 2026-02-25 |