CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1215 matches found

CNNVD•added 2026/01/08 12:0 a.m.•4 views

PIONEER USB DAC Amplifier和PIONEER Stellanova 代码问题漏洞

PIONEER USB DAC Amplifier and PIONEER Stellanova are both products of PIONEER Corporation, Japan.PIONEER USB DAC Amplifier is a line of hi-fi audio devices.PIONEER Stellanova is a line of audio systems. A code issue vulnerability exists in PIONEER USB DAC Amplifier and PIONEER Stellanova, which...

8.5CVSS7.5AI score0.00175EPSS

Exploits0References2

CVE•added 2026/01/07 11:9 p.m.•16 views

CVE-2019-25268

This CVE affects NREL BEopt 2.8.0.0 . The vulnerability is a DLL hijacking issue caused by insecure loading of libraries, allowing an attacker to place malicious libraries on WebDAV or SMB shares (e.g., sdl2.dll and libegl.dll ) and execute arbitrary code when a user opens the application. Impact...

9.8CVSS7AI score0.00371EPSS

Exploits1References5

RedhatCVE•added 2026/01/07 9:31 a.m.•7 views

CVE-2019-16860

Code42 app through version 7.0.2 for Windows has an Untrusted Search Path. In certain situations, a non-administrative attacker on the local machine could create or modify a dynamic-link library DLL. The Code42 service could then load it at runtime, and potentially execute arbitrary code at an...

7.3CVSS7.8AI score0.00371EPSS

Exploits0References1

NVD•added 2026/01/06 3:15 a.m.•6 views

CVE-2025-12793

An uncontrolled DLL loading path vulnerability exists in AsusSoftwareManagerAgent. A local attacker may influence the application to load a DLL from an attacker-controlled location, potentially resulting in arbitrary code execution. Refer to the ' Security Update for MyASUS' section on the ASUS...

8.5CVSS0.00115EPSS

Exploits0References1

CVE•added 2026/01/06 2:14 a.m.•16 views

CVE-2025-12793

CVE-2025-12793 affects AsusSoftwareManagerAgent with an uncontrolled DLL loading path vulnerability. The Red Hat and CVE records corroborate a local attacker could influence the process to load a DLL from an attacker-controlled location, potentially enabling arbitrary code execution. The PT-Secur...

8.5CVSS6.8AI score0.00115EPSS

Exploits0References1Affected Software1

CNNVD•added 2026/01/06 12:0 a.m.•4 views

ASUS System Control Interface 安全漏洞

ASUS System Control Interface is a computer system control interface from Asus China. A security vulnerability exists in ASUS System Control Interface, which originates from an uncontrolled DLL load path that could lead to the execution of arbitrary code...

8.5CVSS6.9AI score0.00115EPSS

Exploits0References1

Cvelist•added 2026/01/05 12:0 a.m.•27 views

CVE-2025-57836

An issue was discovered in Samsung Magician 6.3.0 through 8.3.2 on Windows. The installer creates a temporary folder with weak permissions during installation, allowing a non-admin user to perform DLL hijacking and escalate privileges...

0.00114EPSS

Exploits0References2

EUVD•added 2026/01/05 12:0 a.m.•5 views

EUVD-2026-0832

7.8CVSS6.6AI score0.00114EPSS

Exploits0References4

EUVD•added 2025/12/30 9:30 p.m.•7 views

EUVD-2025-205841

TrueConf Client 8.5.2 is vulnerable to DLL hijacking via crafted wfapi.dll allowing local attackers to execute arbitrary code within the user's context...

7.1AI score0.00167EPSS

Exploits1References3

GithubExploit•added 2025/12/30 9:54 a.m.•221 views

Exploit for Improper Access Control in Microsoft

CVE-2025-47962-POC Reproduction process： i686-w64-mingw32-gcc...

7.8CVSS7.1AI score0.01391EPSS

Exploits1

Cvelist•added 2025/12/30 12:0 a.m.•27 views

CVE-2025-66835

TrueConf Client 8.5.2 is vulnerable to DLL hijacking via crafted wfapi.dll allowing local attackers to execute arbitrary code within the user's context...

0.00167EPSS

Exploits1References2

CVE•added 2025/12/30 12:0 a.m.•27 views

CVE-2025-66835

CVE-2025-66835 affects TrueConf Client 8.5.2. The vulnerability is a DLL hijacking issue triggered by a crafted wfapi.dll, enabling a local attacker to execute arbitrary code within the user’s context. Impact is confined to the user’s privileges/context as described; no in-wild exploitation detai...

7.1CVSS7.3AI score0.00167EPSS

Exploits1References2Affected Software1

CNVD•added 2025/12/18 12:0 a.m.•2 views

MailEnable Insecure DLL Loading Vulnerability (CNVD-2026-14400)

MailEnable is a Windows-based business e-mail server from MailEnable Australia. MailEnable suffers from an insecure DLL loading vulnerability that can be exploited by an attacker to cause local arbitrary code execution...

8.5CVSS6AI score0.00144EPSS

Exploits0References1

CNVD•added 2025/12/18 12:0 a.m.•3 views

MailEnableMailEnable Insecure DLL Loading Vulnerability (CNVD-2026-14404)

MailEnable is a Windows-based business e-mail server from MailEnable Australia. MailEnable suffers from a MailEnable Insecure DLL Load vulnerability that can be exploited by an attacker to cause local arbitrary code execution...

8.5CVSS6AI score0.00147EPSS

Exploits0References1

CNNVD•added 2025/12/18 12:0 a.m.•5 views

Netsoft Holdings Hubstaff 代码问题漏洞

Netsoft Holdings Hubstaff is a project management platform from US-based Netsoft Holdings. A code issue vulnerability exists in Netsoft Holdings Hubstaff version 1.6.14, which stems from DLL search order hijacking and could lead to obtaining a reverse shell...

8.5CVSS6.9AI score0.00189EPSS

Exploits1References3

CNVD•added 2025/12/18 12:0 a.m.•4 views

MailEnable Insecure DLL Loading Vulnerability (CNVD-2026-14406)

8.5CVSS6AI score0.00141EPSS

Exploits0References1

CNVD•added 2025/12/18 12:0 a.m.•4 views

MailEnable Insecure DLL Loading Vulnerability

8.5CVSS6AI score0.00164EPSS

Exploits0References1

RedhatCVE•added 2025/12/15 2:34 p.m.•4 views

CVE-2025-13670