203 matches found
CVE-2023-41787
CVE-2023-41787 is an Uncontrolled Search Path Element vulnerability in Pandora FMS affecting versions 700–772. The issue arises from insecure search-path handling, enabling an attacker to access files containing sensitive information by manipulating configuration/file search paths. Documents cons...
PT-2023-28089 · Unknown · Pandora Fms
Name of the Vulnerable Software and Affected Versions: Pandora FMS versions 700 through 772 Description: The issue is related to an Uncontrolled Search Path Element vulnerability, which allows for Leveraging/Manipulating Configuration File Search Paths. This vulnerability enables access to files...
CVE-2023-28388
Uncontrolled search path element in some IntelR Chipset Device Software before version 10.1.19444.8378 may allow an authenticated user to potentially enable escalation of privilege via local access...
The vulnerability of the executeable file connect.exe in the distributed version of the Git version control system for Windows allows a hacker to execute arbitrary code.
The vulnerability of the executeable file connect.exe in the distributed version of Git for Windows relates to an uncontrolled element in the search path. Exploiting this vulnerability could allow a perpetrator to execute arbitrary code...
CVE-2023-39374
ForeScout NAC SecureConnector version 11.2 - CWE-427: Uncontrolled Search Path Element...
CVE-2023-39374 ForeScout NAC SecureConnector – CWE-427: Uncontrolled Search Path Element
ForeScout NAC SecureConnector version 11.2 - CWE-427: Uncontrolled Search Path Element...
CVE-2023-39374
CVE-2023-39374 affects ForeScout NAC SecureConnector 11.2. The issue is described as CWE-427: Uncontrolled Search Path Element, attributed to an uncontrolled search path element in the affected software. According to NVD/NVD-derived metrics, the vulnerability is rated CVSS v3.1 base score 7.8 (HI...
PTC Kepware KepServerEX (Update A)
1. EXECUTIVE SUMMARY CVSS v3 6.3 ATTENTION : Exploitable remotely/low attack complexity Vendor : PTC Equipment : Kepware KepServerEX Vulnerabilities : Uncontrolled Search Path Element, Improper Input Validation, Insufficiently Protected Credentials 2. RISK EVALUATION Successful exploitation of...
The vulnerability of the microprogramming software used by the embedded video driver on the Server Board M10JNP2SB BMC Video Driver for Windows and Linux lies in an uncontrolled search path element, allowing a hacker to execute arbitrary code.
The vulnerability of the microprogramming software integrated into the Server Board M10JNP2SB BMC Video Driver for Windows and Linux lies in its uncontrolled search path mechanism. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
CVE-2022-4894
Certain HP and Samsung Printer software packages may potentially be vulnerable to elevation of privilege due to Uncontrolled Search Path Element...
CVE-2023-34355
Uncontrolled search path element for some IntelR Server Board M10JNP2SB integrated BMC video drivers before version 3.0 for Microsoft Windows and before version 1.13.4 for linux may allow an authenticated user to potentially enable escalation of privilege via local access...
PT-2023-22171 · Intel · Intel Psr Sdk
Name of the Vulnerable Software and Affected Versions: IntelR PSR SDK versions prior to 1.0.0.20 Description: The issue is related to an uncontrolled search path element that may allow an authenticated user to potentially enable escalation of privilege via local access. Recommendations: For Intel...
​Siemens Software Center
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services ...
Certain HP and Samsung printer software - Potential elevation of privileges
Certain HP and Samsung Printer software packages may potentially be vulnerable to elevation of privilege due to Uncontrolled Search Path Element. Update the printer software...
Intel VTune Profiler 代码问题漏洞
Intel VTune Profiler is a performance testing tool for optimized software from Intel USA. The software performs performance testing of IoT embedded applications, media software, Java applications, and high-performance computing applications. A security vulnerability exists in Intel VTune Profiler...
CVE-2022-34755
CVE-2022-34755 affects Schneider Electric Easergy Builder Installer (versions ≤ 1.7.23). It is caused by an uncontrolled search path element, allowing a locally privileged attacker to place a crafted file and potentially execute arbitrary code during the installation process initiated by a valid ...
CVE-2022-26062
Uncontrolled search path element in the IntelR Trace Analyzer and Collector before version 2021.6 for IntelR oneAPI HPC Toolkit may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-26076
Uncontrolled search path element in the IntelR oneAPI Deep Neural Network oneDNN before version 2022.1 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-26032
Uncontrolled search path element in the IntelR Distribution for Python programming language before version 2022.1 for IntelR oneAPI Toolkits may allow an authenticated user to potentially enable escalation of privilege via local access...
Code injection
Uncontrolled Search Path Element in Checkmk Agent in Tribe29 Checkmk before 2.1.0p1, before 2.0.0p25 and before 1.6.0p29 on a Checkmk server allows the site user to escalate privileges via a manipulated unixcat executable...