NSIS-Dev/nsis

GitHub

github.com

nsis.sourceforge.io

Releases86

Frequency2 weeks 5 days

Last Release about 2 months ago

Stars832

***This is just a mirror of https://sf.net/projects/nsis -- please report issues there*** NSIS (Nullsoft Scriptable Install System) is a professional open source system to create Windows installers. It is designed to be as small and flexible as possible and is therefore very suitable for internet distribution.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2026-42171 ↗	Apr 24, 2026Friday, 24 April 2026, 22:16	7.8 HIGH	—
NSIS (Nullsoft Scriptable Install System) 3.06.1 before 3.12 sometimes uses the Low IL temp directory when executing as SYSTEM, allowing local attackers to gain privileges (if they can cause my_GetTempFileName to return 0, as shown in the references).
CVE-2023-37378 ↗	Jul 3, 2023Monday, 3 July 2023, 20:15	5.3 MEDIUM	—
Nullsoft Scriptable Install System (NSIS) before 3.09 mishandles access control for an uninstaller directory.