Lucene search
K

8693 matches found

Vulnrichment
Vulnrichment
added 2026/06/10 2:9 p.m.9 views

CVE-2026-8637

A potential uncontrolled search path vulnerability was reported in the LanSchool Classic client application that could allow a local authenticated user to execute arbitrary code with elevated privileges...

8.5CVSS6AI score0.0013EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/10 12:0 a.m.18 views

PT-2026-48454

A potential uncontrolled search path vulnerability was reported in the LanSchool Classic client application that could allow a local authenticated user to execute arbitrary code with elevated privileges...

8.5CVSS6AI score0.0013EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2026/06/09 10:45 p.m.44 views

Security Bulletin: IBM i is Affected by Privilege Escalation [CVE-2026-7870]

Summary IBM i is vulnerable to privilege escalation due to an unqualified library call CVE-2026-7870 as described in the vulnerability details section. Vulnerability Details CVEID:CVE-2026-7870 DESCRIPTION: IBM i could allow a user to gain elevated privileges due to an unqualified library call. A...

8.8CVSS5.5AI score0.00343EPSS
Exploits0Affected Software5
NVD
NVD
added 2026/06/09 9:17 p.m.13 views

CVE-2026-47937

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could result in arbitrary code execution in the context of the current user. An attacker with high privileges could exploit this vulnerability to execute arbitrary...

7.7CVSS0.00151EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/09 8:5 p.m.7 views

CVE-2026-47937 Acrobat Reader | Uncontrolled Search Path Element (CWE-427)

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could result in arbitrary code execution in the context of the current user. An attacker with high privileges could exploit this vulnerability to execute arbitrary...

7.7CVSS6.6AI score0.00151EPSS
Exploits0References1
CVE
CVE
added 2026/06/09 8:5 p.m.26 views

CVE-2026-47937

CVE-2026-47937 affects Adobe Acrobat Reader up to version 24.001.30365 and 26.001.21651 (and earlier). The issue is an Uncontrolled Search Path Element (CWE-427) that could enable arbitrary code execution in the context of the current user. Exploitation requires user interaction : a victim must o...

7.7CVSS6.6AI score0.00151EPSS
Exploits0References1Affected Software2
EUVD
EUVD
added 2026/06/09 8:5 p.m.10 views

EUVD-2026-35826

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a...

7.4CVSS6.1AI score0.00151EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/09 8:5 p.m.45 views

CVE-2026-47937 Acrobat Reader | Uncontrolled Search Path Element (CWE-427)

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could result in arbitrary code execution in the context of the current user. An attacker with high privileges could exploit this vulnerability to execute arbitrary...

7.7CVSS0.00151EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/09 6:30 p.m.15 views

EUVD-2026-35515

Untrusted search path in Windows Storage allows an authorized attacker to elevate privileges locally...

7CVSS5.4AI score0.00218EPSS
Exploits0References2
NVD
NVD
added 2026/06/09 5:17 p.m.8 views

CVE-2026-48565

Untrusted search path in Windows Narrator Braille allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00432EPSS
Exploits0References1
NVD
NVD
added 2026/06/09 5:17 p.m.9 views

CVE-2026-47648

Untrusted search path in Windows Storage allows an authorized attacker to elevate privileges locally...

7CVSS0.00218EPSS
Exploits0References1
CVE
CVE
added 2026/06/09 5:5 p.m.28 views

CVE-2026-48565

Windows Narrator Braille contains an untrusted search path vulnerability that can elevate privileges locally for an authorized user. Root cause is an untrusted search path in the Narrator Braille component, with an attacker able to exploit it without user interaction. CVSSv3.1 metrics indicate AV...

7.8CVSS5.4AI score0.00432EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2026/06/09 5:5 p.m.12 views

EUVD-2026-35585

Untrusted search path in Windows Narrator Braille allows an authorized attacker to elevate privileges locally...

7.8CVSS5.4AI score0.00432EPSS
Exploits0References1
CVE
CVE
added 2026/06/09 5:5 p.m.40 views

CVE-2026-47648

CVE-2026-47648 — Windows Storage contains an untrusted search path vulnerability that enables a locally authenticated attacker to perform privilege escalation. The issue arises from a trusted component loading an untrusted search path, potentially elevating privileges with high impact (C/H/I/H/A/...

7CVSS5.4AI score0.00218EPSS
Exploits0References1Affected Software13
Microsoft CVE
Microsoft CVE
added 2026/06/09 2:0 p.m.11 views

Windows Narrator Braille Elevation of Privilege Vulnerability

Untrusted search path in Windows Narrator Braille allows an authorized attacker to elevate privileges locally...

7.8CVSS5.5AI score0.00432EPSS
Exploits0
Veracode
Veracode
added 2026/06/09 7:49 a.m.13 views

Privilege Escalation

AWS Advanced JDBC Wrapper is vulnerable to Privilege Escalation. The vulnerability is due to an untrusted search path issue in the GlobalDatabasePlugin, where a low-privileged authenticated user can create a crafted function that is executed when another user connects through the affected wrapper...

8.6CVSS5.5AI score0.00305EPSS
Exploits0References4Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2026/06/09 5:7 a.m.7 views

CamView installer insecurely loads Dynamic Link Libraries

Overview CamView installer provided by ARUCOM Inc. insecurely loads Dynamic Link Libraries. Uncontrolled search path element CWE-427 - CVE-2015-9268 The CVSS evaluation above assume that a victim user is directed to download and place a specially crafted DLL file with the affected installer and t...

9.3CVSS7.7AI score0.01525EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.17 views

PT-2026-48103

Name of the Vulnerable Software and Affected Versions Microsoft Windows Narrator Braille affected versions not specified Description An untrusted search path in Windows Narrator Braille allows an authorized attacker to elevate privileges locally. This issue is related to an exposed dangerous...

7.8CVSS7AI score0.00432EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.15 views

Adobe Acrobat Reader 代码问题漏洞

Adobe Acrobat Reader is a PDF viewer developed by Adobe Inc. in the United States. This software is used for printing, signing, and annotating PDF documents. Versions of Adobe Acrobat Reader such as 24.001.30365, 26.001.21651, and earlier versions have code vulnerabilities. These vulnerabilities...

7.7CVSS5.7AI score0.00151EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.14 views

PT-2026-48039

Name of the Vulnerable Software and Affected Versions Windows Storage affected versions not specified Description An untrusted search path in Windows Storage allows an authorized attacker to elevate privileges locally. Privilege escalation occurs when an application searches for a required file i...

7CVSS5.2AI score0.00218EPSS
Exploits0References6
Rows per page
Query Builder