CVE-2023-29081

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jan 26, 2024

Updated: Feb 1, 2024

CWE ID 276

Summary

CVE-2023-29081 is a recently disclosed vulnerability affecting Suite Setups built with versions of InstallShield prior to R2 2023. This issue grants locally authenticated users the ability to trigger a Denial of Service (DoS) condition. The vulnerability is related to how InstallShield manages move operations on local, temporary folders, potentially leading to resource exhaustion and service disruption. This defect poses a risk to system stability and availability, making it a significant concern for organizations utilizing the affected software. Users are encouraged to upgrade to the latest InstallShield version to mitigate this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

InstallShield

Affected Vendors

Flexera Software

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Predator Still Active, with New Client and Corporate Links Identified

Russia-Aligned TAG-110 Targets Tajikistan with Macro-Enabled Word Documents

Know What Matters

For Customers

For Partners