Lucene search
K

201 matches found

Cvelist
Cvelist
added 2024/10/06 11:49 a.m.14 views

CVE-2024-45246 Diebold Nixdorf – CWE-427: Uncontrolled Search Path Element

Diebold Nixdorf – CWE-427: Uncontrolled Search Path Element...

7.3CVSS0.00169EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/06 12:0 a.m.5 views

PT-2024-31503 · Diebold Nixdorf · Diebold Nixdorf

Name of the Vulnerable Software and Affected Versions: Diebold Nixdorf affected versions not specified Description: The issue concerns an Uncontrolled Search Path Element, which is a type of security weakness. This weakness can potentially be exploited to execute malicious code or escalate...

7.3CVSS7.7AI score0.00169EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/09/16 12:0 a.m.4 views

Intel Raid Web Console 代码问题漏洞

Intel Raid Web Console is a web-based, Intel Corporation USA application that provides monitoring, maintenance, troubleshooting, and configuration capabilities for Intel RAID products. Intel Raid Web Console has a code issue vulnerability that stems from the inclusion of an uncontrolled search pa...

7.8CVSS6.8AI score0.00139EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/08/05 12:0 a.m.5 views

Microsoft Reactor Workshops reactorworkshops Uncontrolled Search Path Element Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Reactor Workshops. Authentication is not required to exploit this vulnerability. The specific flaw exists within the installation of Reactor Workshops. When installed from the official...

9.8CVSS7.7AI score
Exploits0References1
ICS
ICS
added 2024/06/27 12:0 a.m.46 views

Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electric Products (Update E)

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.0 ATTENTION : Exploitable remotely Vendor : ICONICS, Mitsubishi Electric Equipment : ICONICS Product Suite Vulnerabilities : Allocation of Resources Without Limits or Throttling, Improper Neutralization, Uncontrolled Search Path Element, Improper...

7.8CVSS7.3AI score0.73461EPSS
Exploits0References9
ICS
ICS
added 2024/06/20 6:0 a.m.22 views

Yokogawa CENTUM

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 7.7 ATTENTION : Exploitable remotely/Low attack complexity Vendor : Yokogawa Equipment : CENTUM Vulnerability : Uncontrolled Search Path Element 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to execute arbitrary...

8.5CVSS8.7AI score0.00339EPSS
Exploits0References10
Vulnrichment
Vulnrichment
added 2024/06/13 11:26 a.m.18 views

CVE-2024-34116 Adobe Creative Cloud App Install Arbitrary Folder Delete Vulnerability can be abuse to Privilege Escalation

Creative Cloud Desktop versions 6.1.0.587 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could result in a security feature bypass. An attacker could exploit this vulnerability to load and execute malicious libraries, leading to arbitrary file delete...

7.1CVSS7.3AI score0.00298EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/13 11:26 a.m.31 views

CVE-2024-34116 Adobe Creative Cloud App Install Arbitrary Folder Delete Vulnerability can be abuse to Privilege Escalation

Creative Cloud Desktop versions 6.1.0.587 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could result in a security feature bypass. An attacker could exploit this vulnerability to load and execute malicious libraries, leading to arbitrary file delete...

7.1CVSS0.00298EPSS
Exploits0References1
CVE
CVE
added 2024/05/14 6:49 p.m.73 views

CVE-2024-2637

The CVE-2024-2637 issue is an Uncontrolled Search Path Element vulnerability affecting multiple B&R Industrial Automation products: Scene Viewer, Automation Runtime, mapp Vision, mapp View, mapp Cockpit, mapp Safety, VC4, APROL, various CAN drivers, Tou0ch Lock, B&R Single-Touch Driver, Serial Us...

7.2CVSS7AI score0.00168EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2024/05/03 3:15 a.m.4 views

CVE-2023-44438

Ashlar-Vellum Argon Uncontrolled Search Path Element Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Argon. User interaction is required to exploit this vulnerability in that the target must visit...

8.8CVSS6.2AI score0.00825EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/03/20 12:0 a.m.6 views

The vulnerability of the software for adjusting Intel XTU performance lies in the uncontrolled search path element, which allows a hacker to increase their privileges.

The vulnerability of the software for adjusting Intel XTU performance is related to an uncontrollable element in the search process. Exploiting this vulnerability can allow a perpetrator to enhance their privileges...

6.7CVSS6.6AI score0.00192EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/02/28 12:0 a.m.6 views

The vulnerability of the Intel System Support Utility’s scanning function, related to an uncontrolled search path element, allows a malicious actor to escalate their privileges.

The vulnerability of the Intel System Support Utility scanning tool is related to an uncontrolled element in the search process. Exploiting this vulnerability can allow attackers to increase their privileges...

6.7CVSS6.6AI score0.00191EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/01/10 5:15 p.m.5 views

CVE-2023-29444

An uncontrolled search path element vulnerability DLL hijacking has been discovered that could allow a locally authenticated adversary to escalate privileges to SYSTEM. Alternatively, they could host a trojanized version of the software and trick victims into downloading and installing their...

7.3CVSS5.8AI score0.00171EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/01/10 5:6 p.m.43 views

CVE-2023-29444 Uncontrolled Search Path Element in PTC's Kepware KEPServerEX

An uncontrolled search path element vulnerability DLL hijacking has been discovered that could allow a locally authenticated adversary to escalate privileges to SYSTEM. Alternatively, they could host a trojanized version of the software and trick victims into downloading and installing their...

6.3CVSS7.8AI score0.00171EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2023/12/15 12:0 a.m.17 views

PaperCut NG Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of PaperCut NG. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the pc-pdl-to-image...

7CVSS7.3AI score0.0036EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/12/04 12:0 a.m.6 views

The vulnerability of the software for adjusting Intel XTU performance lies in the uncontrolled search path element, which allows a hacker to increase their privileges.

The vulnerability of the software for adjusting Intel XTU performance is related to an uncontrollable element in the search process. Exploiting this vulnerability can allow a perpetrator to enhance their privileges...

6.7CVSS7.2AI score0.00239EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2023/11/23 2:38 p.m.24 views

CVE-2023-41790 Traversal Path on PHP file

Uncontrolled Search Path Element vulnerability in Pandora FMS on all allows Leveraging/Manipulating Configuration File Search Paths. This vulnerability allows to access the server configuration file and to compromise the database. This issue affects Pandora FMS: from 700 through 773...

7.6CVSS9.5AI score0.00573EPSS
Exploits0References1
CVE
CVE
added 2023/11/23 2:38 p.m.47 views

CVE-2023-41790

CVE-2023-41790 is a path traversal vulnerability in Pandora FMS (versions 700–773) that allows access to server configuration files via an uncontrolled search path element, potentially compromising the database. Public descriptions consistently cite traversal through get_file.php as the root caus...

9.8CVSS8.6AI score0.00573EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/11/23 2:31 p.m.46 views

CVE-2023-41787

CVE-2023-41787 is an Uncontrolled Search Path Element vulnerability in Pandora FMS affecting versions 700–772. The issue arises from insecure search-path handling, enabling an attacker to access files containing sensitive information by manipulating configuration/file search paths. Documents cons...

7.5CVSS6.6AI score0.00514EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/11/23 12:0 a.m.6 views

PT-2023-28089 · Unknown · Pandora Fms

Name of the Vulnerable Software and Affected Versions: Pandora FMS versions 700 through 772 Description: The issue is related to an Uncontrolled Search Path Element vulnerability, which allows for Leveraging/Manipulating Configuration File Search Paths. This vulnerability enables access to files...

7.5CVSS7.4AI score0.00514EPSS
Exploits0References5
Rows per page
Query Builder