Lucene search
K

272 matches found

Vulnrichment
Vulnrichment
added 2026/03/25 5:44 a.m.3 views

CVE-2026-26306

The installer for OM Workspace Windows Edition Ver 2.4 and earlier insecurely loads Dynamic Link Libraries DLLs, which could allow an attacker to execute arbitrary code with the privileges of the user invoking the installer...

8.4CVSS7.5AI score0.00144EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/25 5:44 a.m.4 views

CVE-2026-26306

The installer for OM Workspace Windows Edition Ver 2.4 and earlier insecurely loads Dynamic Link Libraries DLLs, which could allow an attacker to execute arbitrary code with the privileges of the user invoking the installer...

8.4CVSS7.5AI score0.00144EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/03/25 5:44 a.m.22 views

CVE-2026-26306

The installer for OM Workspace Windows Edition Ver 2.4 and earlier insecurely loads Dynamic Link Libraries DLLs, which could allow an attacker to execute arbitrary code with the privileges of the user invoking the installer...

8.4CVSS0.00144EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/25 12:0 a.m.7 views

OM Workspace 代码问题漏洞

OM Workspace is a digital collaboration platform developed by the Japanese company OM. Versions of OM Workspace Windows Edition 2.4 and earlier contained code-related vulnerabilities. These vulnerabilities stemmed from the installer’s insecure loading of dynamic link libraries, which could allow...

8.4CVSS7.5AI score0.00144EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/25 12:0 a.m.12 views

PT-2026-27641

Name of the Vulnerable Software and Affected Versions OM Workspace versions 2.4 and earlier Description The installer for OM Workspace Windows Edition insecurely loads Dynamic Link Libraries DLLs. This could allow an attacker to execute arbitrary code with the privileges of the user running the...

8.4CVSS7.5AI score0.00144EPSS
Exploits0References6
EUVD
EUVD
added 2026/03/09 6:31 a.m.4 views

EUVD-2026-10295

The installer for Qsee Client versions 1.0.1 and prior insecurely load Dynamic Link Libraries DLLs. When a user is directed to place some malicious DLL to the same directory and execute the affected installer, then arbitrary code may be executed with the administrative privilege...

8.4CVSS6AI score0.0016EPSS
Exploits0References3
OSV
OSV
added 2026/03/09 6:16 a.m.5 views

CVE-2026-30896

The installer for Qsee Client versions 1.0.1 and prior insecurely load Dynamic Link Libraries DLLs. When a user is directed to place some malicious DLL to the same directory and execute the affected installer, then arbitrary code may be executed with the administrative privilege...

8.4CVSS6AI score0.0016EPSS
Exploits0References2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2026/03/09 5:57 a.m.8 views

Installer for Qsee Client may insecurely load Dynamic Link Libraries

Overview The installer for Qsee Client provided by Qsee contains the following vulnerability with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. Uncontrolled search path element CWE-427 - CVE-2026-30896 Kazuma Matsumoto of GMO Cybersecurity by IERAE, Inc. report...

8.4CVSS7AI score0.0016EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/02/21 1:18 p.m.8 views

CVE-2026-26050

The installer for ジョブログ集計/分析ソフトウェア RICOHジョブログ集計ツール versions prior to Ver.1.3.7 contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. As a result, arbitrary code may be executed with administrative privileges...

8.4CVSS5.8AI score0.0016EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2026/02/20 3:31 a.m.6 views

Installer for Job log aggregation/analysis software RICOH Job Log Aggregation Tool may insecurely load Dynamic Link Libraries

Overview The installer for Job log aggregation/analysis software RICOH Job Log Aggregation Tool contains the following vulnerability related to the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. Uncontrolled search path element CWE-427 - CVE-2026-26050 Kazuma...

8.4CVSS5.7AI score0.0016EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/02/13 7:21 a.m.12 views

CVE-2026-25676

The installer of M-Track Duo HD version 1.0.0 contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. As a result, arbitrary code may be executed with administrator privileges...

7.8CVSS5.8AI score0.00187EPSS
Exploits1References1
CVE
CVE
added 2026/02/12 4:26 a.m.24 views

CVE-2026-25676

CVE-2026-25676 affects the M-Track Duo HD installer (version 1.0.0). The issue arises from insecure DLL search path handling, which may allow loading of arbitrary DLLs and lead to code execution with administrator privileges. The description does not specify affected products beyond this installe...

7.8CVSS5.8AI score0.00187EPSS
Exploits1References2
NVD
NVD
added 2026/02/10 10:15 a.m.13 views

CVE-2026-25655

A vulnerability has been identified in SINEC NMS All versions V4.0 SP2. The affected application permits improper modification of a configuration file by a low-privileged user. This could allow an attacker to load malicious DLLs, potentially leading to arbitrary code execution with administrative...

8.5CVSS0.00238EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/10 9:58 a.m.3 views

CVE-2026-25656

A vulnerability has been identified in SINEC NMS All versions V4.0 SP3, User Management Component UMC All versions V2.15.2.1. The affected application permits improper modification of a configuration file by a low-privileged user. This could allow an attacker to load malicious DLLs, potentially...

8.5CVSS7.6AI score0.00238EPSS
Exploits0References1
CVE
CVE
added 2026/02/10 9:58 a.m.19 views

CVE-2026-25656

CVE-2026-25656 affects SINEC NMS User Management Component (UMC) across all versions and all SINEC NMS deployments where UMC is

8.5CVSS7.6AI score0.00238EPSS
Exploits0References1Affected Software2
ATTACKERKB
ATTACKERKB
added 2026/02/10 9:58 a.m.3 views

CVE-2026-25656

A vulnerability has been identified in SINEC NMS All versions V4.0 SP3, User Management Component UMC All versions V2.15.2.1. The affected application permits improper modification of a configuration file by a low-privileged user. This could allow an attacker to load malicious DLLs, potentially...

8.5CVSS7.6AI score0.00238EPSS
Exploits0References2
ICS
ICS
added 2026/02/10 12:0 a.m.8 views

Siemens SINEC NMS

SUMMARY Multiple Siemens products are affected by two local privilege escalation vulnerabilities which could allow an low privileged attacker to load malicious DLLs, potentially leading to arbitrary code execution with elevated privileges. Siemens has released new versions for the affected...

6.4AI score
Exploits0References10
EUVD
EUVD
added 2026/02/03 5:27 a.m.4 views

EUVD-2026-5263

The installer for Roland Cloud Manager ver.3.1.19 and prior insecurely loads Dynamic Link Libraries DLLs, which could allow an attacker to execute arbitrary code with the privileges of the application...

8.4CVSS6AI score0.00144EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/01/27 3:23 p.m.6 views

CVE-2020-36938

WinAVR version 20100110 contains an insecure permissions vulnerability that allows authenticated users to modify system files and executables. Attackers can leverage the overly permissive access controls to potentially modify critical DLLs and executable files in the WinAVR installation directory...

8.8CVSS5.9AI score0.00198EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/01/27 3:23 p.m.6 views

EUVD-2020-30856

WinAVR version 20100110 contains an insecure permissions vulnerability that allows authenticated users to modify system files and executables. Attackers can leverage the overly permissive access controls to potentially modify critical DLLs and executable files in the WinAVR installation directory...

8.8CVSS5.9AI score0.00198EPSS
Exploits0References3
Rows per page
Query Builder