Caphyon Ltd Advanced Installer 19.3 and earlier and many products that use the updater from Advanced Installer (Advanced Updater) are affected by a remote code execution vulnerability via the CustomDetection parameter in the update check function. To exploit this vulnerability, a user must start an affected installation to trigger the update check.
AI analysis not yet available
Plain-English explanation, risk summary, and remediation steps will appear here once AI analysis is complete.
No Fix Known
No patch has been released yet. Apply workarounds or mitigations where available.
| Vendor | Product | Versions | Fixed In |
|---|---|---|---|
| caphyon | advanced_installer | 19.4 | - |
| 3cx | call_flow_designer | - | - |
| 3cx | crm_template_generator | - |
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
70
Affected Products
8
References
caphyon / advanced_installer
| - |
| boom | boomtv_streamer_portal | - | - |
| codesector | direct_folders | - | - |
| codesector | teracopy | - | - |
| emeditor | emeditor | - | - |
| flamory | flamory | - | - |
| freesnippingtool | free_snipping_tool | - | - |
| fxsound | fxsound | - | - |
| gainedge | better_explorer | - | - |
| gamecaster | gamecaster | - | - |
| getmailbird | mailbird | - | - |
| guzogo | guzogo | - | - |
| honeygain | honeygain | - | - |
| jki | vi_package_manager | - | - |
| jpsoft | take_command | - | - |
| krylack | archive_password_recovery | - | - |
| krylack | asterisks_password_decryptor | - | - |
| krylack | burning_suite | - | - |
| krylack | rar_password_recovery | - | - |
| krylack | volume_serial_number_editor | - | - |
| krylack | zip_password_recovery | - | - |
| moonsoftware | password_agent | - | - |
| nefarius | scptoolkit | - | - |
| plagiarismcheckerx | plagiarism_checker_x | - | - |
| prusa3d | prusaslicer | - | - |
| realdefense | mycleanid | - | - |
| realdefense | mycleanpc | - | - |
| realdefense | mypasslock | - | - |
| rovio | angry_birds_space | - | - |
| rovio | bad_piggies | - | - |
| synaptics | displaylink_usb_graphics | 10.3.6400.0 | - |
| urban-vpn | urban_vpn | - | - |
| vigem | vigembus_driver | - | - |
| vpnhood | vpnhood | - | - |
| vrdesktop | virtual_desktop_streamer | - | - |
| xsplit | xsplit_express_video_editor | - | - |
| rstinstruments | vw0420_firmware | - | - |
| rstinstruments | inclinalysis_digital_inclinometer | - | - |
| rstinstruments | ipi_utility | - | - |
| rstinstruments | rstar_rtu_host | - | - |
| rstinstruments | dt2011_firmware | - | - |
| rstinstruments | dt2011b_firmware | - | - |
| rstinstruments | dt2040_firmware | - | - |
| rstinstruments | dt2050_firmware | - | - |
| rstinstruments | dt2050b_firmware | - | - |
| rstinstruments | dt2055b_firmware | - | - |
| rstinstruments | dt2306_firmware | - | - |
| rstinstruments | dt2350_firmware | - | - |
| rstinstruments | dt2485_firmware | - | - |
| rstinstruments | dt4205_firmware | - | - |
| rstinstruments | dtsaa_firmware | - | - |
| rstinstruments | ic6560_firmware | - | - |
| rstinstruments | ic6660_firmware | - | - |
| rstinstruments | dtl201b\/2b_firmware | - | - |
| rstinstruments | mtcm_firmware | - | - |
| rstinstruments | gaa2820_firmware | - | - |
| rstinstruments | rtu_firmware | - | - |
| rstinstruments | mems_tilt_meter_firmware | - | - |
| rstinstruments | portable_tilt_meter_firmware | - | - |
| rstinstruments | vw2106_firmware | - | - |
| rstinstruments | th2016_firmware | - | - |
| rstinstruments | th2016b_firmware | - | - |
| rstinstruments | ma7_firmware | - | - |
| rstinstruments | qb120_firmware | - | - |
| rstinstruments | sg350_firmware | - | - |
| rstinstruments | ir420_firmware | - | - |
| rstinstruments | lp100_firmware | - | - |
| rstinstruments | c109_firmware | - | - |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability
Impact