Vulnerabilities (CVE)

Filtered by vendor Bitrock Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-5530 1 Bitrock 1 Installbuilder 2024-02-04 6.8 MEDIUM 7.8 HIGH
Windows binaries generated with InstallBuilder versions earlier than 19.7.0 are vulnerable to tampering even if they contain a valid Authenticode signature.
CVE-2006-2221 2 Bitrock, Process-one 2 Install Builder, Ejabberd 2024-02-04 2.1 LOW N/A
A third-party installer generation tool, possibly BitRock InstallBuilder, as used in products including Process-one ejabberd 1.1.1_1 and earlier, generates an installer that allows local users to cause a denial of service via a symlink attack on the bitrock_installer.log temporary file. NOTE: it is possible that this vulnerability is present in other products that use this installer.