Lucene search
K

5 matches found

Positive Technologies
Positive Technologies
added 2026/04/15 12:0 a.m.7 views

PT-2026-33184

Yubico libfido2 before 1.17.0, python-fido2 before 2.2.0, and yubikey-manager before 5.9.1 have an unintended DLL search path...

2.9CVSS5.8AI score0.00131EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/03/09 12:0 a.m.8 views

The vulnerability of the StorSvc storage service in the Windows operating system allows a hacker to escalate their privileges.

The vulnerability of the StorSvc storage service in the Windows operating system arises due to deficiencies in the mechanism for searching dynamic libraries. Exploiting this vulnerability can allow an attacker to increase their privileges by introducing a DLL library during software installation...

8.8CVSS5.5AI score
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/01/13 12:0 a.m.6 views

The vulnerability of the Fortinet FortiClient for Windows installer and the FortiClient Enterprise Management Server (EMS) allows a perpetrator to execute arbitrary code.

The vulnerability of the Fortinet FortiClient for Windows installer and the FortiClient Enterprise Management Server EMS is related to an uncontrolled DLL search process. Exploiting this vulnerability allows a attacker to execute arbitrary code using a specially crafted DLL library...

7.8CVSS7.6AI score0.00243EPSS
Exploits0References4Affected Software2
ATTACKERKB
ATTACKERKB
added 2021/12/10 3:0 p.m.6 views

CVE-2021-4007

Rapid7 Insight Agent, versions 3.0.1 to 3.1.2.34, suffer from a local privilege escalation due to an uncontrolled DLL search path. Specifically, when Insight Agent versions 3.0.1 to 3.1.2.34 start, the Python interpreter attempts to load python3.dll at "C:\DLLs\python3.dll," which normally is...

7.8CVSS7.2AI score0.00319EPSS
Exploits0References3Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2011/09/02 10:26 a.m.2 views

GTK+ may insecurely load dynamic libraries

Overview GTK+ may use unsafe methods for determining how to load DLLs. GTK+ is a toolkit for developing applications with GUIs. GTK+ contains an issue with the DLL search path, which may lead to insecurely loading dynamic libraries. Naoto Katsumi of LAC Co., Ltd. reported this vulnerability to IP...

6.9CVSS7.4AI score0.0039EPSS
Exploits0References7
Rows per page
Query Builder