Lucene search
+L

203 matches found

CVE
CVE
added 2023/11/23 2:31 p.m.47 views

CVE-2023-41787

CVE-2023-41787 is an Uncontrolled Search Path Element vulnerability in Pandora FMS affecting versions 700–772. The issue arises from insecure search-path handling, enabling an attacker to access files containing sensitive information by manipulating configuration/file search paths. Documents cons...

7.5CVSS6.6AI score0.00514EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/11/23 12:0 a.m.6 views

PT-2023-28089 · Unknown · Pandora Fms

Name of the Vulnerable Software and Affected Versions: Pandora FMS versions 700 through 772 Description: The issue is related to an Uncontrolled Search Path Element vulnerability, which allows for Leveraging/Manipulating Configuration File Search Paths. This vulnerability enables access to files...

7.5CVSS7.4AI score0.00514EPSS
Exploits0References5
OSV
OSV
added 2023/11/14 7:15 p.m.5 views

CVE-2023-28388

Uncontrolled search path element in some IntelR Chipset Device Software before version 10.1.19444.8378 may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS5.8AI score0.00191EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/10/11 12:0 a.m.10 views

The vulnerability of the executeable file connect.exe in the distributed version of the Git version control system for Windows allows a hacker to execute arbitrary code.

The vulnerability of the executeable file connect.exe in the distributed version of Git for Windows relates to an uncontrolled element in the search path. Exploiting this vulnerability could allow a perpetrator to execute arbitrary code...

7.8CVSS7AI score0.00381EPSS
Exploits0References4Affected Software4
NVD
NVD
added 2023/09/03 3:15 p.m.33 views

CVE-2023-39374

ForeScout NAC SecureConnector version 11.2 - CWE-427: Uncontrolled Search Path Element...

7.8CVSS7.7AI score0.00188EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/09/03 2:48 p.m.15 views

CVE-2023-39374 ForeScout NAC SecureConnector – CWE-427: Uncontrolled Search Path Element

ForeScout NAC SecureConnector version 11.2 - CWE-427: Uncontrolled Search Path Element...

7.8CVSS7AI score0.00188EPSS
Exploits0References1
CVE
CVE
added 2023/09/03 2:48 p.m.46 views

CVE-2023-39374

CVE-2023-39374 affects ForeScout NAC SecureConnector 11.2. The issue is described as CWE-427: Uncontrolled Search Path Element, attributed to an uncontrolled search path element in the affected software. According to NVD/NVD-derived metrics, the vulnerability is rated CVSS v3.1 base score 7.8 (HI...

7.8CVSS7.7AI score0.00188EPSS
Exploits0References1Affected Software1
ICS
ICS
added 2023/08/31 6:0 a.m.159 views

PTC Kepware KepServerEX (Update A)

1. EXECUTIVE SUMMARY CVSS v3 6.3 ATTENTION : Exploitable remotely/low attack complexity Vendor : PTC Equipment : Kepware KepServerEX Vulnerabilities : Uncontrolled Search Path Element, Improper Input Validation, Insufficiently Protected Credentials 2. RISK EVALUATION Successful exploitation of...

7.8CVSS7.1AI score0.00306EPSS
Exploits0References10
BDU FSTEC
BDU FSTEC
added 2023/08/18 12:0 a.m.6 views

The vulnerability of the microprogramming software used by the embedded video driver on the Server Board M10JNP2SB BMC Video Driver for Windows and Linux lies in an uncontrolled search path element, allowing a hacker to execute arbitrary code.

The vulnerability of the microprogramming software integrated into the Server Board M10JNP2SB BMC Video Driver for Windows and Linux lies in its uncontrolled search path mechanism. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

6.7CVSS7.5AI score0.00154EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2023/08/16 8:13 p.m.35 views

CVE-2022-4894

Certain HP and Samsung Printer software packages may potentially be vulnerable to elevation of privilege due to Uncontrolled Search Path Element...

7.4AI score0.00188EPSS
Exploits0References1
NVD
NVD
added 2023/08/11 3:15 a.m.31 views

CVE-2023-34355

Uncontrolled search path element for some IntelR Server Board M10JNP2SB integrated BMC video drivers before version 3.0 for Microsoft Windows and before version 1.13.4 for linux may allow an authenticated user to potentially enable escalation of privilege via local access...

7.3CVSS6.9AI score0.00154EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/08/11 12:0 a.m.4 views

PT-2023-22171 · Intel · Intel Psr Sdk

Name of the Vulnerable Software and Affected Versions: IntelR PSR SDK versions prior to 1.0.0.20 Description: The issue is related to an uncontrolled search path element that may allow an authenticated user to potentially enable escalation of privilege via local access. Recommendations: For Intel...

7.8CVSS7.6AI score0.0015EPSS
Exploits0References3
ICS
ICS
added 2023/08/08 12:0 a.m.40 views

​Siemens Software Center

​​As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services ...

7.8CVSS8.3AI score0.0193EPSS
Exploits0References12
Hewlett-Packard
Hewlett-Packard
added 2023/08/02 12:0 a.m.26 views

Certain HP and Samsung printer software - Potential elevation of privileges

Certain HP and Samsung Printer software packages may potentially be vulnerable to elevation of privilege due to Uncontrolled Search Path Element. Update the printer software...

7.3CVSS7AI score0.00188EPSS
Exploits0
CNNVD
CNNVD
added 2023/05/10 12:0 a.m.6 views

Intel VTune Profiler 代码问题漏洞

Intel VTune Profiler is a performance testing tool for optimized software from Intel USA. The software performs performance testing of IoT embedded applications, media software, Java applications, and high-performance computing applications. A security vulnerability exists in Intel VTune Profiler...

7.8CVSS7.5AI score0.00169EPSS
Exploits0References2
CVE
CVE
added 2023/04/18 7:50 p.m.49 views

CVE-2022-34755

CVE-2022-34755 affects Schneider Electric Easergy Builder Installer (versions ≤ 1.7.23). It is caused by an uncontrolled search path element, allowing a locally privileged attacker to place a crafted file and potentially execute arbitrary code during the installation process initiated by a valid ...

6.7CVSS6.7AI score0.00188EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/02/16 8:15 p.m.3 views

CVE-2022-26062

Uncontrolled search path element in the IntelR Trace Analyzer and Collector before version 2021.6 for IntelR oneAPI HPC Toolkit may allow an authenticated user to potentially enable escalation of privilege via local access...

7.3CVSS5.8AI score0.00182EPSS
Exploits0References1
OSV
OSV
added 2023/02/16 8:15 p.m.6 views

CVE-2022-26076

Uncontrolled search path element in the IntelR oneAPI Deep Neural Network oneDNN before version 2022.1 may allow an authenticated user to potentially enable escalation of privilege via local access...

7.3CVSS5.8AI score0.00233EPSS
Exploits0References1
OSV
OSV
added 2023/02/16 8:15 p.m.3 views

CVE-2022-26032

Uncontrolled search path element in the IntelR Distribution for Python programming language before version 2022.1 for IntelR oneAPI Toolkits may allow an authenticated user to potentially enable escalation of privilege via local access...

7.3CVSS5.8AI score0.00182EPSS
Exploits0References1
Prion
Prion
added 2023/02/09 9:15 a.m.21 views

Code injection

Uncontrolled Search Path Element in Checkmk Agent in Tribe29 Checkmk before 2.1.0p1, before 2.0.0p25 and before 1.6.0p29 on a Checkmk server allows the site user to escalate privileges via a manipulated unixcat executable...

4.3CVSS7.6AI score0.0023EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder