Lucene search
K

251 matches found

Tenable Nessus
Tenable Nessus
added 2024/10/23 12:0 a.m.14 views

Adobe Dimension < 3.4.3 Arbitrary code execution (APSB21-40)

The version of Adobe Dimension installed on the remote Windows host is prior to 3.4.3. It is, therefore, affected by a vulnerability as referenced in the APSB21-40 advisory. - Adobe Dimension version 3.4 and earlier is affected by an Uncontrolled Search Path Element element. An unauthenticated...

9.3CVSS8.2AI score0.02789EPSS
Exploits0References2
OSV
OSV
added 2024/10/16 8:15 a.m.6 views

CVE-2024-45710

SolarWinds Platform is susceptible to an Uncontrolled Search Path Element Local Privilege Escalation vulnerability. This requires a low privilege account and local access to the affected node machine...

7.8CVSS5.8AI score0.00279EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/10/08 12:0 a.m.3 views

Siemens ModelSim和Questa 代码问题漏洞

Questa and ModelSim simulators are used worldwide for simulating, debugging and verifying integrated circuit designs, among other things. An uncontrolled search path element vulnerability exists in Siemens Questa and ModelSim, which can be exploited by an authenticated, local attacker to inject...

7.3CVSS7AI score0.00152EPSS
Exploits0References2
ICS
ICS
added 2024/10/08 12:0 a.m.46 views

Siemens Questa and ModelSim

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

7.3CVSS7.5AI score0.00152EPSS
Exploits0References10
CVE
CVE
added 2024/10/06 11:49 a.m.38 views

CVE-2024-45246

CVE-2024-45246 concerns Diebold Nixdorf Vynamic View Console with an Uncontrolled Search Path Element (CWE-427). Public sources indicate affected versions are prior to 5.9.5 (CNNVD) and that the issue could enable arbitrary code execution and privilege escalation. The CNNVD description additional...

7.3CVSS7.2AI score0.00169EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/06 11:49 a.m.14 views

CVE-2024-45246 Diebold Nixdorf – CWE-427: Uncontrolled Search Path Element

Diebold Nixdorf – CWE-427: Uncontrolled Search Path Element...

7.3CVSS0.00169EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/06 12:0 a.m.5 views

PT-2024-31503 · Diebold Nixdorf · Diebold Nixdorf

Name of the Vulnerable Software and Affected Versions: Diebold Nixdorf affected versions not specified Description: The issue concerns an Uncontrolled Search Path Element, which is a type of security weakness. This weakness can potentially be exploited to execute malicious code or escalate...

7.3CVSS7.7AI score0.00169EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/09/16 12:0 a.m.3 views

Intel Raid Web Console 代码问题漏洞

Intel Raid Web Console is a web-based, Intel Corporation USA application that provides monitoring, maintenance, troubleshooting, and configuration capabilities for Intel RAID products. Intel Raid Web Console has a code issue vulnerability that stems from the inclusion of an uncontrolled search pa...

7.8CVSS6.8AI score0.00139EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/08/19 12:0 a.m.5 views

The vulnerability of the Dell Peripheral Manager software relates to an uncontrolled search path element, which allows a perpetrator to escalate their privileges or execute arbitrary code.

The vulnerability of the Dell Peripheral Manager software relates to an uncontrolled search path element. Exploiting this vulnerability can allow attackers to enhance their privileges or execute arbitrary code...

7.3CVSS5.8AI score0.00202EPSS
Exploits0References3Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2024/08/05 12:0 a.m.5 views

Microsoft Reactor Workshops reactorworkshops Uncontrolled Search Path Element Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Reactor Workshops. Authentication is not required to exploit this vulnerability. The specific flaw exists within the installation of Reactor Workshops. When installed from the official...

9.8CVSS7.7AI score
Exploits0References1
ICS
ICS
added 2024/06/27 12:0 a.m.46 views

Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electric Products (Update E)

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.0 ATTENTION : Exploitable remotely Vendor : ICONICS, Mitsubishi Electric Equipment : ICONICS Product Suite Vulnerabilities : Allocation of Resources Without Limits or Throttling, Improper Neutralization, Uncontrolled Search Path Element, Improper...

7.8CVSS7.3AI score0.73461EPSS
Exploits0References9
ICS
ICS
added 2024/06/20 6:0 a.m.22 views

Yokogawa CENTUM

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 7.7 ATTENTION : Exploitable remotely/Low attack complexity Vendor : Yokogawa Equipment : CENTUM Vulnerability : Uncontrolled Search Path Element 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to execute arbitrary...

8.5CVSS8.7AI score0.00339EPSS
Exploits0References10
Vulnrichment
Vulnrichment
added 2024/06/13 11:26 a.m.18 views

CVE-2024-34116 Adobe Creative Cloud App Install Arbitrary Folder Delete Vulnerability can be abuse to Privilege Escalation

Creative Cloud Desktop versions 6.1.0.587 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could result in a security feature bypass. An attacker could exploit this vulnerability to load and execute malicious libraries, leading to arbitrary file delete...

7.1CVSS7.3AI score0.00298EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/13 11:26 a.m.29 views

CVE-2024-34116 Adobe Creative Cloud App Install Arbitrary Folder Delete Vulnerability can be abuse to Privilege Escalation

Creative Cloud Desktop versions 6.1.0.587 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could result in a security feature bypass. An attacker could exploit this vulnerability to load and execute malicious libraries, leading to arbitrary file delete...

7.1CVSS0.00298EPSS
Exploits0References1
CVE
CVE
added 2024/05/14 6:49 p.m.73 views

CVE-2024-2637

The CVE-2024-2637 issue is an Uncontrolled Search Path Element vulnerability affecting multiple B&R Industrial Automation products: Scene Viewer, Automation Runtime, mapp Vision, mapp View, mapp Cockpit, mapp Safety, VC4, APROL, various CAN drivers, Tou0ch Lock, B&R Single-Touch Driver, Serial Us...

7.2CVSS7AI score0.00168EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2024/05/03 3:15 a.m.4 views

CVE-2023-44438

Ashlar-Vellum Argon Uncontrolled Search Path Element Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Argon. User interaction is required to exploit this vulnerability in that the target must visit...

8.8CVSS6.2AI score0.00825EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/03/20 12:0 a.m.5 views

The vulnerability of the software for adjusting Intel XTU performance lies in the uncontrolled search path element, which allows a hacker to increase their privileges.

The vulnerability of the software for adjusting Intel XTU performance is related to an uncontrollable element in the search process. Exploiting this vulnerability can allow a perpetrator to enhance their privileges...

6.7CVSS6.6AI score0.00192EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/02/28 12:0 a.m.5 views

The vulnerability of the Intel System Support Utility’s scanning function, related to an uncontrolled search path element, allows a malicious actor to escalate their privileges.

The vulnerability of the Intel System Support Utility scanning tool is related to an uncontrolled element in the search process. Exploiting this vulnerability can allow attackers to increase their privileges...

6.7CVSS6.6AI score0.00191EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2024/02/14 12:0 a.m.4 views

Intel System Support Utility for Windows Security Vulnerability

Intel System Support Utility for Windows is a Windows platform-based system support utility from Intel USA. The program is mainly used to identify the hardware model, operating system version, and software installed on the computer. A security vulnerability previously existed in Intel System...

7.8CVSS6.7AI score0.00191EPSS
Exploits0References2
OSV
OSV
added 2024/01/10 5:15 p.m.4 views

CVE-2023-29444

An uncontrolled search path element vulnerability DLL hijacking has been discovered that could allow a locally authenticated adversary to escalate privileges to SYSTEM. Alternatively, they could host a trojanized version of the software and trick victims into downloading and installing their...

7.3CVSS5.8AI score0.00171EPSS
Exploits0References2
Rows per page
Query Builder