201 matches found
CVE-2024-45246 Diebold Nixdorf – CWE-427: Uncontrolled Search Path Element
Diebold Nixdorf – CWE-427: Uncontrolled Search Path Element...
PT-2024-31503 · Diebold Nixdorf · Diebold Nixdorf
Name of the Vulnerable Software and Affected Versions: Diebold Nixdorf affected versions not specified Description: The issue concerns an Uncontrolled Search Path Element, which is a type of security weakness. This weakness can potentially be exploited to execute malicious code or escalate...
Intel Raid Web Console 代码问题漏洞
Intel Raid Web Console is a web-based, Intel Corporation USA application that provides monitoring, maintenance, troubleshooting, and configuration capabilities for Intel RAID products. Intel Raid Web Console has a code issue vulnerability that stems from the inclusion of an uncontrolled search pa...
Microsoft Reactor Workshops reactorworkshops Uncontrolled Search Path Element Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Reactor Workshops. Authentication is not required to exploit this vulnerability. The specific flaw exists within the installation of Reactor Workshops. When installed from the official...
Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electric Products (Update E)
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.0 ATTENTION : Exploitable remotely Vendor : ICONICS, Mitsubishi Electric Equipment : ICONICS Product Suite Vulnerabilities : Allocation of Resources Without Limits or Throttling, Improper Neutralization, Uncontrolled Search Path Element, Improper...
Yokogawa CENTUM
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 7.7 ATTENTION : Exploitable remotely/Low attack complexity Vendor : Yokogawa Equipment : CENTUM Vulnerability : Uncontrolled Search Path Element 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to execute arbitrary...
CVE-2024-34116 Adobe Creative Cloud App Install Arbitrary Folder Delete Vulnerability can be abuse to Privilege Escalation
Creative Cloud Desktop versions 6.1.0.587 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could result in a security feature bypass. An attacker could exploit this vulnerability to load and execute malicious libraries, leading to arbitrary file delete...
CVE-2024-34116 Adobe Creative Cloud App Install Arbitrary Folder Delete Vulnerability can be abuse to Privilege Escalation
Creative Cloud Desktop versions 6.1.0.587 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could result in a security feature bypass. An attacker could exploit this vulnerability to load and execute malicious libraries, leading to arbitrary file delete...
CVE-2024-2637
The CVE-2024-2637 issue is an Uncontrolled Search Path Element vulnerability affecting multiple B&R Industrial Automation products: Scene Viewer, Automation Runtime, mapp Vision, mapp View, mapp Cockpit, mapp Safety, VC4, APROL, various CAN drivers, Tou0ch Lock, B&R Single-Touch Driver, Serial Us...
CVE-2023-44438
Ashlar-Vellum Argon Uncontrolled Search Path Element Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Argon. User interaction is required to exploit this vulnerability in that the target must visit...
The vulnerability of the software for adjusting Intel XTU performance lies in the uncontrolled search path element, which allows a hacker to increase their privileges.
The vulnerability of the software for adjusting Intel XTU performance is related to an uncontrollable element in the search process. Exploiting this vulnerability can allow a perpetrator to enhance their privileges...
The vulnerability of the Intel System Support Utility’s scanning function, related to an uncontrolled search path element, allows a malicious actor to escalate their privileges.
The vulnerability of the Intel System Support Utility scanning tool is related to an uncontrolled element in the search process. Exploiting this vulnerability can allow attackers to increase their privileges...
CVE-2023-29444
An uncontrolled search path element vulnerability DLL hijacking has been discovered that could allow a locally authenticated adversary to escalate privileges to SYSTEM. Alternatively, they could host a trojanized version of the software and trick victims into downloading and installing their...
CVE-2023-29444 Uncontrolled Search Path Element in PTC's Kepware KEPServerEX
An uncontrolled search path element vulnerability DLL hijacking has been discovered that could allow a locally authenticated adversary to escalate privileges to SYSTEM. Alternatively, they could host a trojanized version of the software and trick victims into downloading and installing their...
PaperCut NG Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of PaperCut NG. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the pc-pdl-to-image...
The vulnerability of the software for adjusting Intel XTU performance lies in the uncontrolled search path element, which allows a hacker to increase their privileges.
The vulnerability of the software for adjusting Intel XTU performance is related to an uncontrollable element in the search process. Exploiting this vulnerability can allow a perpetrator to enhance their privileges...
CVE-2023-41790 Traversal Path on PHP file
Uncontrolled Search Path Element vulnerability in Pandora FMS on all allows Leveraging/Manipulating Configuration File Search Paths. This vulnerability allows to access the server configuration file and to compromise the database. This issue affects Pandora FMS: from 700 through 773...
CVE-2023-41790
CVE-2023-41790 is a path traversal vulnerability in Pandora FMS (versions 700–773) that allows access to server configuration files via an uncontrolled search path element, potentially compromising the database. Public descriptions consistently cite traversal through get_file.php as the root caus...
CVE-2023-41787
CVE-2023-41787 is an Uncontrolled Search Path Element vulnerability in Pandora FMS affecting versions 700–772. The issue arises from insecure search-path handling, enabling an attacker to access files containing sensitive information by manipulating configuration/file search paths. Documents cons...
PT-2023-28089 · Unknown · Pandora Fms
Name of the Vulnerable Software and Affected Versions: Pandora FMS versions 700 through 772 Description: The issue is related to an Uncontrolled Search Path Element vulnerability, which allows for Leveraging/Manipulating Configuration File Search Paths. This vulnerability enables access to files...