201 matches found
CVE-2025-57716
FortiClient on Windows is affected by an Uncontrolled Search Path Element (CWE-427) vulnerability across FortiClient versions 7.0–7.2.11 and 7.4.0–7.4.3. The issue enables local, low-privilege users to perform a DLL hijacking attack by placing a malicious DLL in the FortiClient Online Installer i...
PT-2025-41961
Name of the Vulnerable Software and Affected Versions FortiClient versions 7.0 through 7.2.11 and 7.4.0 through 7.4.3 Description An uncontrolled search path element issue exists in FortiClient on Windows. A local, low-privileged user could potentially perform a DLL hijacking attack by placing a...
Uncontrolled Search Path Element
tkeasygui is vulnerable to Uncontrolled Search Path Element. The vulnerability is due to improper control over the directories searched for executable files, which allows an attacker to place malicious files in a trusted path and execute arbitrary code with the privileges of the running program...
EUVD-2024-50404
Malicious code in bioql PyPI...
EUVD-2025-30890
Malicious code in bioql PyPI...
EUVD-2023-0456
Malicious code in bioql PyPI...
EUVD-2024-49596
Malicious code in bioql PyPI...
EUVD-2024-34637
Malicious code in bioql PyPI...
EUVD-2022-30896
Malicious code in bioql PyPI...
GHSA-PH2W-CX28-VHRQ TkEasyGUI Affected by Uncontrolled Search Path Element Issue
Uncontrolled search path element issue exists in TkEasyGUI versions prior to v1.0.22. If this vulnerability is exploited, arbitrary code may be executed with the privilege of running the program...
CVE-2025-55671
Uncontrolled search path element issue exists in TkEasyGUI versions prior to v1.0.22. If this vulnerability is exploited, arbitrary code may be executed with the privilege of running the program...
CVE-2025-8614
NoMachine Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of NoMachine. An attacker must first obtain the ability to execute low-privileged code on the target system in order to...
CVE-2025-9330
CVE-2025-9330 affects Foxit PDF Reader Update Service. The flaw: the Update Service loads a library from an unsecured location, enabling a local attacker who can execute low-privileged code to escalate to SYSTEM and execute code. Impact details aligned with the NVD/NZD entries indicate local priv...
PT-2025-33074
Name of the Vulnerable Software and Affected Versions: NoMachine affected versions not specified Description: This issue allows local attackers to escalate privileges on affected installations. An attacker must first obtain the ability to execute low-privileged code on the target system to exploi...
CVE-2025-5480
Action1 Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Action1. An attacker must first obtain the ability to execute low-privileged code on the target system in order to explo...
CVE-2025-5480 Action1 Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
Action1 Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Action1. An attacker must first obtain the ability to execute low-privileged code on the target system in order to explo...
The vulnerability of Intel graphics processor microsoftware is related to an uncontrolled search path element, which allows a hacker to increase their privileges.
The vulnerability of Intel graphics processor microsoftware is related to an uncontrollable element in the search process. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of Intel graphics processor microsoftware is related to an uncontrolled search path element, which allows a hacker to increase their privileges.
The vulnerability of Intel graphics processor microsoftware is related to an uncontrollable element in the search process. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of Intel Arc and Intel Iris Xe graphics processor software lies in an uncontrollable search path element, which allows attackers to exploit their privileges.
The vulnerability of Intel Arc and Intel Iris Xe graphics processor software relates to an uncontrollable element in the search process. Exploiting this vulnerability can allow attackers to enhance their privileges...
CVE-2025-43553
Substance3D - Modeler versions 1.21.0 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could result in arbitrary code execution in the context of the current user. If the application relies on a search path to locate critical resources such as libraries or...