本页列出影响 microsoft app_installer 的已公开 CVE 漏洞(通过 NVD CPE 关联)。每行包含严重程度评分、摘要与发布日期,便于识别与分析安全问题。
| CVE | 摘要 | 来源 | 最高 CVSS | EPSS % | 公开时间 | 更新时间 |
|---|---|---|---|---|---|---|
| CVE-2024-38177 | Windows App Installer Spoofing Vulnerability | [email protected] | 7.8 | 0.86% | 2024-08-13 | 2026-06-17 |
| CVE-2021-43890 KEV | We have investigated reports of a spoofing vulnerability in AppX installer that affects Microsoft Windows. Microsoft is aware of attacks that attempt to exploit this vulnerability by using specially crafted packages that include the malware family known as Emotet/Trickbot/Bazaloader. An attacker could craft a malicious attachment to be used in phishing campaigns. The attacker would then have to convince the user to open the specially crafted attachment. Users whose accounts are configured to hav | [email protected] | 7.1 | 10.29% | 2021-12-15 | 2026-06-17 |