MailEnable Insecure DLL Loading Vulnerability (CNVD-2026-14401)

MailEnable is a Windows-based business e-mail server from MailEnable Australia. MailEnable suffers from an insecure DLL loading vulnerability that can be exploited by an attacker to cause local arbitrary code execution...

CVE-2025-34419

MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAISM.DLL from its installation directory without sufficient integrity validation or a secure search order. A...

CVE-2025-34418

MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAIMF.DLL from its installation directory without sufficient integrity validation or a secure search order. A...

EUVD-2025-202439

MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAIPC.DLL from its installation directory without sufficient integrity validation or a secure search order. A...

EUVD-2025-202436

MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAISO.DLL from its installation directory without sufficient integrity validation or a secure search order. A...

CVE-2025-34423

MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAIAU.DLL from its installation directory without sufficient integrity validation or a secure search order. A...

CVE-2025-34422

MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAIPC.DLL from its installation directory without sufficient integrity validation or a secure search order. A...

PT-2025-50340

Name of the Vulnerable Software and Affected Versions MailEnable versions prior to 10.54 Description MailEnable versions prior to 10.54 have an issue where an unsafe Dynamic Link Library DLL loading process can allow a local attacker to execute arbitrary code. The MailEnable administrative...

MailEnable 代码问题漏洞

MailEnable is a Windows-based business e-mail server from MailEnable Australia. MailEnable suffers from a MailEnable Insecure DLL Load vulnerability that can be exploited by an attacker to cause local arbitrary code execution...

CVE-2025-64772

The installer of INZONE Hub 1.0.10.3 to 1.0.17.0 contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. As a result, arbitrary code may be executed with the privilege of the user invoking the installer...

CVE-2025-64772

CVE-2025-64772 affects Sony INZONE Hub installer versions 1.0.10.3–1.0.17.0. Root cause: an insecure DLL search path in the installer allowing loading of unintended DLLs, enabling arbitrary code to run with the invoking user’s privileges. CVSS data indicates local access with low attack complexit...

CVE-2025-12852

DLL Loading vulnerability in NEC Corporation RakurakuMusen Start EX All Verisons allows a attacker to manipulate the PC environment to cause unintended operations on the user's device...

CVE-2025-12852

The RedHat/JVN/CNVD/etc entries confirm a DLL search-path vulnerability (CWE-427) in NEC RakurakuMusen Start EX Installer for Windows, affecting all versions and allowing arbitrary code execution with user privileges by insecure DLL loading. Root cause: insecure DLL search order. Impact: arbitrar...

PT-2025-47418

DLL Loading vulnerability in NEC Corporation RakurakuMusen Start EX All Verisons allows a attacker to manipulate the PC environment to cause unintended operations on the user's device...

EUVD-2024-55044

Potential privilege escalation issue in Revenera InstallShield version 2023 R1 running a renamed Setup.exe on Windows. When a local administrator executes a renamed Setup.exe, the MPR.dll may get loaded from an insecure location and can result in a privilege escalation. The issue has been fixed i...

CVE-2025-62776

CVE-2025-62776 concerns the Windows installer for WTW EAGLE 3.0.8.0, which has an insecure DLL search path that can lead to loading arbitrary DLLs and executing code with the installer's privileges. The root cause is an uncontrolled search path element (CWE-427) affecting the installer. Documente...

CVE-2025-23309

NVIDIA Display Driver contains a vulnerability where an uncontrolled DLL loading path might lead to arbitrary denial of service, escalation of privileges, code execution, and data tampering...

CVE-2025-23309

NVIDIA Display Driver contains a vulnerability where an uncontrolled DLL loading path might lead to arbitrary denial of service, escalation of privileges, code execution, and data tampering...

CVE-2025-23309

The CVE-2025-23309 entry concerns the NVIDIA Display Driver. Affected component: NVIDIA Display Driver (and Linux variant per connected records). Root cause: an uncontrolled DLL loading path could be exploited to load malicious code. Impact stated in sources includes denial of service, privilege ...

EUVD-2018-7330

Malware in sbrugna...