Lucene search
K

106 matches found

Vulnrichment
Vulnrichment
added 2026/01/06 9:6 p.m.3 views

CVE-2025-14596 Quartus Prime Pro Edition Installer Advisory

Uncontrolled Search Path Element vulnerability in Altera Quartus Prime Pro Installer SFX on Windows allows Search Order Hijacking.This issue affects Quartus Prime Pro: from 24.1 through 24.3.1...

6.7CVSS6.6AI score0.00092EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/06 9:6 p.m.24 views

CVE-2025-14596 Quartus Prime Pro Edition Installer Advisory

Uncontrolled Search Path Element vulnerability in Altera Quartus Prime Pro Installer SFX on Windows allows Search Order Hijacking.This issue affects Quartus Prime Pro: from 24.1 through 24.3.1...

6.7CVSS0.00092EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/06 12:0 a.m.4 views

PT-2026-1516

Name of the Vulnerable Software and Affected Versions Altera Quartus Prime Standard versions 23.1 through 24.1 Altera Quartus Prime Lite versions 23.1 through 24.1 Description An uncontrolled search path element issue exists in the Altera Quartus Prime Standard Installer SFX and Altera Quartus...

6.7CVSS6.6AI score0.00092EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/12/12 12:0 a.m.6 views

Altera High Level Synthesis Compiler 安全漏洞

Altera High Level Synthesis Compiler is a high-level synthesis tool from Altera Corporation, USA. A security vulnerability exists in Altera High Level Synthesis Compiler versions 19.1 through 24.3, which arises from an uncontrolled search path element that could lead to search order hijacking...

6.7CVSS6.6AI score0.00097EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.4 views

Yandex Telemost 安全漏洞

Yandex Telemost is an application for easily creating video calls or video chats from the Russian company Yandex. A security vulnerability exists in Yandex Telemost versions prior to 2.19.1, which stems from improper control of the search path element and could lead to search order hijacking...

8.8CVSS6.6AI score0.00151EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.4 views

Yandex Messenger 安全漏洞

Yandex Messenger is an instant messaging application from the Russian company Yandex. A security vulnerability exists in Yandex Messenger versions prior to 2.245, which stems from improper control of the search path element and may lead to search order hijacking...

8.8CVSS6.7AI score0.00143EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.2 views

Siemens SIMATIC S7-1500 Untrusted Search Path (CVE-2022-26488)

In Python before 3.10.3 on Windows, local users can gain privileges because the search path is inadequately secured. The installer may allow a local attacker to add user-writable directories to the system search path. To exploit, an administrator must have installed Python for all users and enabl...

7CVSS6.9AI score0.01365EPSS
Exploits0References4
NVD
NVD
added 2025/11/11 9:15 p.m.4 views

CVE-2025-40763

A vulnerability has been identified in Altair Grid Engine All versions V2026.0.0. Affected products do not properly validate environment variables when loading shared libraries, allowing path hijacking through malicious library substitution. This could allow a local attacker to execute arbitrary...

8.5CVSS0.00123EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/11 8:20 p.m.4 views

EUVD-2025-106751

A vulnerability has been identified in Altair Grid Engine All versions V2026.0.0. Affected products do not properly validate environment variables when loading shared libraries, allowing path hijacking through malicious library substitution. This could allow a local attacker to execute arbitrary...

8.5CVSS7AI score0.00123EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/11 8:20 p.m.2 views

CVE-2025-40763

A vulnerability has been identified in Altair Grid Engine All versions V2026.0.0. Affected products do not properly validate environment variables when loading shared libraries, allowing path hijacking through malicious library substitution. This could allow a local attacker to execute arbitrary...

8.5CVSS7.2AI score0.00123EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/11 8:20 p.m.8 views

CVE-2025-40763

A vulnerability has been identified in Altair Grid Engine All versions V2026.0.0. Affected products do not properly validate environment variables when loading shared libraries, allowing path hijacking through malicious library substitution. This could allow a local attacker to execute arbitrary...

8.5CVSS0.00123EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/11 12:0 a.m.4 views

Siemens Altair Grid Engine 代码问题漏洞

Siemens Altair Grid Engine is a distributed resource management system from Siemens USA. A code issue vulnerability exists in Siemens Altair Grid Engine versions prior to V2026.0.0, which stems from a failure to properly validate environment variables when loading shared libraries, which could le...

8.5CVSS7.1AI score0.00123EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-15086

Malware in sbrugna...

8.8CVSS8.8AI score0.00373EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-10050

Malware in sbrugna...

7.8CVSS6.9AI score0.07409EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.1 views

Unity Linux 20.1070e Security Update: nodejs (UTSA-2025-680627)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-680627 advisory. Node.js before 16.4.1, 14.17.2, and 12.22.2 is vulnerable to local privilege escalation attacks under certain conditions on Windows platforms. More specifically,...

7.8CVSS7AI score0.07409EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-31046

Malicious code in bioql PyPI...

7CVSS6.7AI score0.01365EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-23811

Malicious code in bioql PyPI...

7.8CVSS6.6AI score0.00169EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2025/09/11 12:6 a.m.455 views

Exploit for CVE-2024-32019

CVE-2024-32019 Netdata ndsudo Privilege Escalation PoC Sum...

8.8CVSS8.7AI score0.01174EPSS
Exploits15
Cvelist
Cvelist
added 2025/09/10 11:39 a.m.8 views

CVE-2025-10215 DLL search path hijacking vulnerability

DLL search path hijacking vulnerability in the UPDF.exe executable for Windows version 1.8.5.0 allows attackers with local access to execute arbitrary code by placing a FREngine.dll file of their choice in the 'C:\Users\Public\AppData\Local\UPDF\FREngine\Bin64' directory, which could lead to...

7CVSS0.00157EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/10 12:0 a.m.3 views

UPDF 代码问题漏洞

UPDF is a multi-platform PDF editor from the Chinese company UPDF. A code issue vulnerability exists in UPDF version 1.8.5.0, which stems from DLL search path hijacking and could lead to the execution of arbitrary code...

7.8CVSS7.1AI score0.00157EPSS
Exploits0References1
Rows per page
Query Builder