Lucene search
+L

203 matches found

cvelist
cvelist
added 2025/10/15 6:6 a.m.19 views

CVE-2025-26860

RemoteCall Remote Support Program for Operator versions prior to 5.1.0 contain an uncontrolled search path element vulnerability. If a crafted DLL is placed in the same folder with the affected product, it may cause an arbitrary code execution...

8.5CVSS0.0016EPSS
Exploits0References2
euvd
euvd
added 2025/10/14 6:30 p.m.7 views

EUVD-2025-34235

An Uncontrolled Search Path Element vulnerability CWE-427 in FortiClient Windows 7.4.0 through 7.4.3, 7.2.0 through 7.2.11, 7.0 all versions may allow a local low privileged user to perform a DLL hijacking attack via placing a malicious DLL to the FortiClient Online Installer installation folder...

6.7CVSS6.1AI score0.00165EPSS
Exploits0References2
cve
cve
added 2025/10/14 3:23 p.m.30 views

CVE-2025-57716

FortiClient on Windows is affected by an Uncontrolled Search Path Element (CWE-427) vulnerability across FortiClient versions 7.0–7.2.11 and 7.4.0–7.4.3. The issue enables local, low-privilege users to perform a DLL hijacking attack by placing a malicious DLL in the FortiClient Online Installer i...

7.3CVSS6.2AI score0.00165EPSS
Exploits0References1Affected Software1
ptsecurity
ptsecurity
added 2025/10/14 12:0 a.m.9 views

PT-2025-41961

Name of the Vulnerable Software and Affected Versions FortiClient versions 7.0 through 7.2.11 and 7.4.0 through 7.4.3 Description An uncontrolled search path element issue exists in FortiClient on Windows. A local, low-privileged user could potentially perform a DLL hijacking attack by placing a...

6.7CVSS6.6AI score0.00165EPSS
Exploits0References3
veracode
veracode
added 2025/10/10 10:14 a.m.7 views

Uncontrolled Search Path Element

tkeasygui is vulnerable to Uncontrolled Search Path Element. The vulnerability is due to improper control over the directories searched for executable files, which allows an attacker to place malicious files in a trusted path and execute arbitrary code with the privileges of the running program...

8.5CVSS8.1AI score0.0015EPSS
Exploits0References5Affected Software1
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-34637

Malicious code in bioql PyPI...

7.1CVSS6.9AI score0.00298EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-0456

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00403EPSS
Exploits1References4
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-50404

Malicious code in bioql PyPI...

7.8CVSS9.3AI score0.00243EPSS
Exploits0References3
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-30890

Malicious code in bioql PyPI...

8.8CVSS9.1AI score0.00441EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-30896

Malicious code in bioql PyPI...

9.3CVSS7.7AI score0.00672EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-49596

Malicious code in bioql PyPI...

7.8CVSS9.3AI score0.00243EPSS
Exploits0References3
osv
osv
added 2025/09/05 6:30 a.m.4 views

GHSA-PH2W-CX28-VHRQ TkEasyGUI Affected by Uncontrolled Search Path Element Issue

Uncontrolled search path element issue exists in TkEasyGUI versions prior to v1.0.22. If this vulnerability is exploited, arbitrary code may be executed with the privilege of running the program...

8.5CVSS7.5AI score0.0015EPSS
Exploits0References4
cvelist
cvelist
added 2025/09/05 5:24 a.m.30 views

CVE-2025-55671

Uncontrolled search path element issue exists in TkEasyGUI versions prior to v1.0.22. If this vulnerability is exploited, arbitrary code may be executed with the privilege of running the program...

8.5CVSS0.0015EPSS
Exploits0References2
osv
osv
added 2025/09/02 8:15 p.m.7 views

CVE-2025-8614

NoMachine Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of NoMachine. An attacker must first obtain the ability to execute low-privileged code on the target system in order to...

7.8CVSS6.2AI score0.00244EPSS
Exploits0References2
cve
cve
added 2025/09/02 8:9 p.m.21 views

CVE-2025-9330

CVE-2025-9330 affects Foxit PDF Reader Update Service. The flaw: the Update Service loads a library from an unsecured location, enabling a local attacker who can execute low-privileged code to escalate to SYSTEM and execute code. Impact details aligned with the NVD/NZD entries indicate local priv...

7.8CVSS7.6AI score0.00165EPSS
Exploits0References2Affected Software2
ptsecurity
ptsecurity
added 2025/08/13 12:0 a.m.12 views

PT-2025-33074

Name of the Vulnerable Software and Affected Versions: NoMachine affected versions not specified Description: This issue allows local attackers to escalate privileges on affected installations. An attacker must first obtain the ability to execute low-privileged code on the target system to exploi...

7.8CVSS7.5AI score0.00244EPSS
Exploits0References5
redhatcve
redhatcve
added 2025/06/08 7:18 p.m.14 views

CVE-2025-5480

Action1 Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Action1. An attacker must first obtain the ability to execute low-privileged code on the target system in order to explo...

7.8CVSS7.5AI score0.00257EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/06/06 6:49 p.m.5 views

CVE-2025-5480 Action1 Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

Action1 Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Action1. An attacker must first obtain the ability to execute low-privileged code on the target system in order to explo...

7.8CVSS8AI score0.00257EPSS
Exploits0References2
bdu_fstec
bdu_fstec
added 2025/05/22 12:0 a.m.5 views

The vulnerability of Intel graphics processor microsoftware is related to an uncontrolled search path element, which allows a hacker to increase their privileges.

The vulnerability of Intel graphics processor microsoftware is related to an uncontrollable element in the search process. Exploiting this vulnerability can allow attackers to enhance their privileges...

6.7CVSS5.5AI score0.00129EPSS
Exploits0References2Affected Software6
bdu_fstec
bdu_fstec
added 2025/05/22 12:0 a.m.9 views

The vulnerability of Intel Arc and Intel Iris Xe graphics processor software lies in an uncontrollable search path element, which allows attackers to exploit their privileges.

The vulnerability of Intel Arc and Intel Iris Xe graphics processor software relates to an uncontrollable element in the search process. Exploiting this vulnerability can allow attackers to enhance their privileges...

6.7CVSS5.5AI score0.00129EPSS
Exploits0References2Affected Software2
Rows per page
Query Builder