Mar 2026: Windows App Installer Spoofing Vulnerability
CVE-2026-23656 Published on March 10, 2026

Windows App Installer Spoofing Vulnerability
Insufficient verification of data authenticity in Windows App Installer allows an unauthorized attacker to perform spoofing over a network.

Vendor Advisory NVD

Weakness Type

Insufficient Verification of Data Authenticity

The software does not sufficiently verify the origin or authenticity of data, in a way that causes it to accept invalid data.

Products Associated with CVE-2026-23656

Want to know whenever a new CVE is published for Microsoft Windows App Client Windows Desktop? stack.watch will email you.

Microsoft Windows App Client Windows Desktop

Affected Versions

Microsoft Windows App Client for Windows Desktop:

Version 1.00 and below 2.0.964 is affected.

Mar 2026: Windows App Installer Spoofing VulnerabilityCVE-2026-23656 Published on March 10, 2026

Weakness Type

Insufficient Verification of Data Authenticity

Products Associated with CVE-2026-23656

Affected Versions

Mar 2026: Windows App Installer Spoofing Vulnerability
CVE-2026-23656 Published on March 10, 2026