i-PRO IP Setting Software 代码问题漏洞

i-PRO IP Setting Software is a management tool developed by the Japanese company i-PRO, designed for discovering devices and configuring network parameters in bulk. The i-PRO IP Setting Software has a code vulnerability related to the DLL search path. This vulnerability may lead to the insecure...

CVE-2026-25866

MobaXterm versions prior to 26.1 contain an uncontrolled search path element vulnerability. The application calls WinExec to execute Notepad++ without a fully qualified executable path when opening remote files. An attacker can exploit the search path behavior by placing a malicious executable...

CVE-2026-25676

The installer of M-Track Duo HD version 1.0.0 contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. As a result, arbitrary code may be executed with administrator privileges...

PT-2026-7817

The installer of M-Track Duo HD version 1.0.0 contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. As a result, arbitrary code may be executed with administrator privileges...

EUVD-2026-4755

beat-access for Windows version 3.0.3 and prior contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. As a result, arbitrary code may be executed with SYSTEM privileges...

CVE-2025-33231

NVIDIA Nsight Systems for Windows contains a vulnerability in the application’s DLL loading mechanism where an attacker could cause an uncontrolled search path element by exploiting insecure DLL search paths. A successful exploit of this vulnerability might lead to code execution, escalation of...

Eaton UPS Companion 安全漏洞

Eaton UPS Companion is a power management software from Eaton Corporation USA. A security vulnerability exists in Eaton UPS Companion that stems from an improperly referenced search path that could lead to the execution of arbitrary code by an attacker with file system access...

CVE-2025-57781

The installers of DENSO TEN drive recorder viewer contain an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. As a result, arbitrary code may be executed with the privilege of the user invoking the installer...

PT-2025-40850

Name of the Vulnerable Software and Affected Versions DENSO TEN drive recorder viewer affected versions not specified Description The installers for the software contain a flaw in how they handle Dynamic Link Library DLL search paths. This can result in the loading of insecure DLLs, potentially...

TkEasyGUI 代码问题漏洞

TkEasyGUI is a GUI library in Python by the individual developer kujirahand. A code issue vulnerability exists in TkEasyGUI versions prior to 1.0.22, which stems from improper control of the search path element and could allow execution of arbitrary code with program run privileges...

CVE-2022-37329

Uncontrolled search path in some IntelR QuartusR Prime Pro and Standard Edition software may allow an authenticated user to potentially enable escalation of privilege via local access...

The vulnerability of the Windows installer in the PostgreSQL database management system allows a hacker to increase their privileges and execute arbitrary code.

The vulnerability of the Windows installer in PostgreSQL database management systems is related to incorrect handling of the search path. Exploiting this vulnerability can allow an attacker to increase their privileges and execute arbitrary code...

The vulnerability of the mDNSResponder.exe executable software used for configuring and managing Dante-enabled Zoom Rooms allows a attacker to load arbitrary files.

The vulnerability of software for configuring and managing Dante-enabled Zoom Rooms relates to incorrect handling of the search path. Exploiting this vulnerability could allow a malicious actor to upload arbitrary files remotely...

Siemens Sicam Pq Analyzer 代码问题漏洞

SICAM PQ Analyzer is a power quality system software that provides options for evaluating archived PQ measurement data and fault records. A search path vulnerability exists in Siemens SICAM PQ Analyzer, which can be exploited by an attacker with write privileges to plant an executable that will r...

The vulnerability of the Adobe Creative Cloud Desktop Application’s graphic editor app, related to incorrect handling of the search path, allows a hacker to execute arbitrary code.

The vulnerability of the Adobe Creative Cloud Desktop Application’s graphic editor app relates to improper handling of the search path. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the installer of microprogramming software for the onboard video driver of the Server Board affects Windows systems. This vulnerability allows a hacker to exploit their privileges.

The vulnerability of the installer of microprogramming software for the onboard video driver of the Server Board occurs due to incorrect handling of the search path. Exploiting this vulnerability can allow attackers to gain increased privileges...

The vulnerabilities of the Network Access Manager and Web Security Agent components of the Cisco AnyConnect Secure Mobility Client cryptographic security tool for Windows allow a perpetrator to execute arbitrary code.

The vulnerability of the Network Access Manager and Web Security Agent components of the Cisco AnyConnect Secure Mobility Client cryptographic security solution for Windows is related to an uncontrolled element in the search path. Exploiting this vulnerability could allow a attacker to execute...

CVE-2020-24420

Adobe Photoshop for Windows version 21.2.1 and earlier is affected by an uncontrolled search path element vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious fil...

postgresql: Uncontrolled search path element in CREATE EXTENSION

A flaw was found in PostgreSQL, where some PostgreSQL extensions did not use the searchpath safely in their installation script. This flaw allows an attacker with sufficient privileges to trick an administrator into executing a specially crafted script during the extension's installation or updat...

CVE-2020-24422

Adobe Creative Cloud Desktop Application version 5.2 and earlier and 2.1 and earlier for Windows is affected by an uncontrolled search path vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that ...