Lucene search
K

30 matches found

CVE
CVE
added 2026/03/27 5:5 p.m.33 views

CVE-2026-4962

CVE-2026-4962 affects UltraVNC up to 1.6.4.0, specifically the library component Service.dll within version.dll, where an attacker can manipulate an uncontrolled search path. The issue enables a local attack with high complexity and is reportedly difficult to exploit, and an exploit has been rele...

7.3CVSS6.4AI score0.00229EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/21 12:0 a.m.8 views

PT-2026-3843

D-Link D-View 8 versions 2.0.1.107 and below contain an uncontrolled search path vulnerability in the installer. When executed with elevated privileges via UAC, the installer attempts to load version.dll from its execution directory, allowing DLL preloading. An attacker can supply a malicious...

8.4CVSS5.8AI score0.00141EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-9110

Malware in sbrugna...

9.3CVSS7.5AI score0.01525EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2016-3928

Malware in sbrugna...

7.8CVSS7.7AI score0.00479EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-51565

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00316EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-39421

Malicious code in bioql PyPI...

7.8CVSS6.6AI score0.00155EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 4:9 a.m.14 views

CVE-2023-47453

An Untrusted search path vulnerability in Sohu Video Player 7.0.15.0 allows local users to gain escalated privileges through the version.dll file in the current working directory...

7.8CVSS6.9AI score0.00316EPSS
Exploits1
NVD
NVD
added 2024/07/28 3:15 a.m.26 views

CVE-2024-42053

The MSI installer for Splashtop Streamer for Windows before 3.6.0.0 uses a temporary folder with weak permissions during installation. A local user can exploit this to escalate privileges to SYSTEM by placing a version.dll file in the folder...

7.8CVSS0.00155EPSS
Exploits0References2
CVE
CVE
added 2024/07/28 12:0 a.m.47 views

CVE-2024-42053

The CVE concerns Splashtop Streamer for Windows prior to version 3.6.0.0. The MSI installer creates a temporary folder with weak permissions, allowing a local attacker to place a malicious version.dll and escalate to SYSTEM during installation. Affected component: MSI installer for Windows; root ...

7.8CVSS7.2AI score0.00155EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/07/28 12:0 a.m.27 views

CVE-2024-42053

The MSI installer for Splashtop Streamer for Windows before 3.6.0.0 uses a temporary folder with weak permissions during installation. A local user can exploit this to escalate privileges to SYSTEM by placing a version.dll file in the folder...

7.8CVSS0.00155EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2024/04/03 1:41 p.m.472 views

Exploit for CVE-2024-27518

CVE-2024-27518 - SUPERAntiSpyware Professional X LPE PoC This...

7.8CVSS6.5AI score0.00604EPSS
Exploits2
NVD
NVD
added 2023/11/30 9:15 p.m.19 views

CVE-2023-47453

An Untrusted search path vulnerability in Sohu Video Player 7.0.15.0 allows local users to gain escalated privileges through the version.dll file in the current working directory...

7.8CVSS0.00316EPSS
Exploits1References1
Prion
Prion
added 2023/11/30 9:15 p.m.13 views

Design/Logic Flaw

An Untrusted search path vulnerability in Sohu Video Player 7.0.15.0 allows local users to gain escalated privileges through the version.dll file in the current working directory...

4.3CVSS7.1AI score0.00316EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2023/11/30 12:0 a.m.36 views

CVE-2023-47453

CVE-2023-47453 affects Sohu Video Player 7.0.15.0. It describes an Untrusted search path vulnerability where local users can gain escalated privileges via the version.dll file located in the current working directory. The CVSS–3.1 base metrics assign a HIGH severity (7.8) with Local attack vector...

7.8CVSS7.6AI score0.00316EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/11/30 12:0 a.m.3 views

PT-2023-30455 · Sohu · Sohu Video Player

Name of the Vulnerable Software and Affected Versions: Sohu Video Player version 7.0.15.0 Description: An Untrusted search path issue allows local users to gain escalated privileges through the version.dll file in the current working directory. Recommendations: For Sohu Video Player version...

7.8CVSS7.6AI score0.00316EPSS
Exploits1References5
Cvelist
Cvelist
added 2023/11/30 12:0 a.m.27 views

CVE-2023-47453

An Untrusted search path vulnerability in Sohu Video Player 7.0.15.0 allows local users to gain escalated privileges through the version.dll file in the current working directory...

7.9AI score0.00316EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2021/06/09 12:0 a.m.24 views

The vulnerability of the database update module of the WorkFlow system in the Engineering Data Management and Product Lifecycle Management system LOCMAN:PLM lies in the possibility of unlimited loading of dangerous files, allowing attackers to execute arbitrary code.

The vulnerability of the database update module of the LOCsman:PLM engineering data and product lifecycle management system is related to the unlimited loading of dangerous files. Exploiting this vulnerability can allow an attacker to execute arbitrary code by replacing the dll library version.dl...

6.8CVSS6AI score
Exploits0Affected Software1
Prion
Prion
added 2018/10/01 8:29 a.m.20 views

Design/Logic Flaw

Nullsoft Scriptable Install System NSIS before 2.49 has unsafe implicit linking against Version.dll. In other words, there is no protection mechanism in which a wrapper function resolves the dependency at an appropriate time during runtime...

9.3CVSS6.9AI score0.01525EPSS
Exploits1References3Affected Software2
UbuntuCve
UbuntuCve
added 2018/10/01 8:29 a.m.25 views

CVE-2015-9268

Nullsoft Scriptable Install System NSIS before 2.49 has unsafe implicit linking against Version.dll. In other words, there is no protection mechanism in which a wrapper function resolves the dependency at an appropriate time during runtime...

9.3CVSS7.1AI score0.01525EPSS
Exploits1References2
NVD
NVD
added 2018/10/01 8:29 a.m.24 views

CVE-2015-9268

Nullsoft Scriptable Install System NSIS before 2.49 has unsafe implicit linking against Version.dll. In other words, there is no protection mechanism in which a wrapper function resolves the dependency at an appropriate time during runtime...

9.3CVSS7.6AI score0.01525EPSS
Exploits1References3
Rows per page
Query Builder