CVE-2024-29188 — Link Following in Issues

CWE-59 — Link Following3 documents3 sources

Severity

7.9HIGHNVD

EPSS

0.0%

top 94.10%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Wixtoolset Issues

Timeline

PublishedMar 24

Latest updateMar 25

Description

WiX toolset lets developers create installers for Windows Installer, the Windows installation engine. The custom action behind WiX's `RemoveFolderEx` functionality could allow a standard user to delete protected directories. `RemoveFolderEx` deletes an entire directory tree during installation or uninstallation. It does so by recursing every subdirectory starting at a specified directory and adding each subdirectory to the list of directories Windows Installer should delete. If the setup author …

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:HExploitability: 1.5 | Impact: 5.8

Affected Packages1 packages

▶CVEListV5wixtoolset/issues< 3.14.1+1

🔴Vulnerability Details

OSV

Malicious directory junction can cause WiX RemoveFoldersEx to possibly delete elevated files↗2024-03-25

▶

GHSA

Malicious directory junction can cause WiX RemoveFoldersEx to possibly delete elevated files↗2024-03-25

▶