94 matches found
OESA-2026-2508 qt6-qtbase security update
Qt is a software toolkit for developing applications. Security Fixes: An Uncontrolled Search Path Element vulnerability in the OpenSSL TLS backend of Qt Network qtbase in Qt Qt Framework Unix allows a local attacker to load a rogue CA certificate as a trusted system authority via a crafted...
SUSE CVE-2025-14575
An Uncontrolled Search Path Element vulnerability in the OpenSSL TLS backend of Qt Network qtbase in Qt Qt Framework Unix allows a local attacker to load a rogue CA certificate as a trusted system authority via a crafted certificate file placed in the application's working directory...
EUVD-2026-27842
Uncontrolled Search Path Element vulnerability in WatchGuard Agent on Windows allows Using Malicious Files.This issue affects WatchGuard Agent before 1.25.03.0000...
EUVD-2025-206258
Uncontrolled Search Path Element vulnerability in Altera Quartus Prime Pro on Windows System Console modules allows Search Order Hijacking.This issue affects Quartus Prime Pro: from 17.0 through 25.1.1...
EUVD-2023-0456
Malicious code in bioql PyPI...
EUVD-2024-34637
Malicious code in bioql PyPI...
EUVD-2022-30896
Malicious code in bioql PyPI...
EUVD-2024-50404
Malicious code in bioql PyPI...
EUVD-2025-30890
Malicious code in bioql PyPI...
EUVD-2024-49596
Malicious code in bioql PyPI...
CVE-2025-5480
Action1 Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Action1. An attacker must first obtain the ability to execute low-privileged code on the target system in order to explo...
CVE-2025-5480 Action1 Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
Action1 Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Action1. An attacker must first obtain the ability to execute low-privileged code on the target system in order to explo...
CVE-2025-43553
Substance3D - Modeler versions 1.21.0 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could result in arbitrary code execution in the context of the current user. If the application relies on a search path to locate critical resources such as libraries or...
CVE-2025-43553 Substance3D - Modeler | Uncontrolled Search Path Element (CWE-427)
Substance3D - Modeler versions 1.21.0 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could result in arbitrary code execution in the context of the current user. If the application relies on a search path to locate critical resources such as libraries or...
The vulnerability of the Microsoft Visual Studio software development tool, related to an uncontrolled search path element, allows a hacker to escalate their privileges.
The vulnerability of the Microsoft Visual Studio software development tool is related to an uncontrollable element in the search process. Exploiting this vulnerability can allow attackers to enhance their privileges...
CVE-2024-10930
An Uncontrolled Search Path Element vulnerability exists which could allow a malicious actor to perform DLL hijacking and execute arbitrary code with escalated privileges...
CVE-2024-45710
SolarWinds Platform is susceptible to an Uncontrolled Search Path Element Local Privilege Escalation vulnerability. This requires a low privilege account and local access to the affected node machine...
CVE-2024-49592
Trial installer for McAfee Total Protection legacy trial installer software 16.0.53 allows local privilege escalation because of an Uncontrolled Search Path Element. The attacker could be "an adversary or knowledgeable user" and the type of attack could be called "DLL-squatting." The issue only...
Adobe Dimension < 3.4.3 Arbitrary code execution (APSB21-40) (macOS)
The version of Adobe Dimension installed on the remote macOS host is prior to 3.4.3. It is, therefore, affected by a vulnerability as referenced in the APSB21-40 advisory. - Adobe Dimension version 3.4 and earlier is affected by an Uncontrolled Search Path Element element. An unauthenticated...
Adobe Dimension < 3.4.3 Arbitrary code execution (APSB21-40)
The version of Adobe Dimension installed on the remote Windows host is prior to 3.4.3. It is, therefore, affected by a vulnerability as referenced in the APSB21-40 advisory. - Adobe Dimension version 3.4 and earlier is affected by an Uncontrolled Search Path Element element. An unauthenticated...