Lucene search
K

68 matches found

NVD
NVD
added 2026/07/02 9:16 p.m.8 views

CVE-2026-38972

Notepad3 through 6.25.822.1 contains a DLL search-order hijacking vulnerability in the About-dialog code path in src/Notepad3.c. The application calls LoadLibraryL"MSFTEDIT.DLL" with a bare DLL name, which allows a local attacker to place a malicious MSFTEDIT.DLL in the application directory or...

7.8CVSS0.00149EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/07/02 12:0 a.m.35 views

CVE-2026-38972

Notepad3 through 6.25.822.1 contains a DLL search-order hijacking vulnerability in the About-dialog code path in src/Notepad3.c. The application calls LoadLibraryL"MSFTEDIT.DLL" with a bare DLL name, which allows a local attacker to place a malicious MSFTEDIT.DLL in the application directory or...

0.00149EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/07/02 12:0 a.m.12 views

PT-2026-55312

Name of the Vulnerable Software and Affected Versions Notepad3 versions prior to 6.25.822.2 Description A DLL search-order hijacking issue exists in the About-dialog code path within src/Notepad3.c. The application uses the LoadLibrary function to load MSFTEDIT.DLL using a bare name. This allows ...

7.8CVSS6.5AI score0.00149EPSS
Exploits1References6
NVD
NVD
added 2026/07/01 4:16 p.m.11 views

CVE-2026-58127

PACSgear MediaWriter 5.2.1 exposes a .NET Remoting TCP service on port 9000 via PacsgearMediaServerEngine.dll, registered with ObjectURIs RemoteObj and UIRemoteObj, without any authentication requirement. By exploiting the MarshalByRefObject object unmarshalling technique and implementing .NET...

9.8CVSS0.00985EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/07/01 2:41 p.m.7 views

CVE-2026-58127

PACSgear MediaWriter 5.2.1 exposes a .NET Remoting TCP service on port 9000 via PacsgearMediaServerEngine.dll, registered with ObjectURIs RemoteObj and UIRemoteObj, without any authentication requirement. By exploiting the MarshalByRefObject object unmarshalling technique and implementing .NET...

9.8CVSS6.5AI score0.00985EPSS
Exploits1References4Affected Software1
RedhatCVE
RedhatCVE
added 2026/06/05 7:25 p.m.11 views

CVE-2026-44406

ZTE Cloud PC client uSmartView contains a DLL hijacking vulnerability; since uSmartViewServiceAgent.exe runs with SYSTEM privileges, successful hijacking enables local arbitrary code execution, privilege escalation, and memory corruption.contains a DLL hijacking vulnerability; since...

7.8CVSS5.7AI score0.00162EPSS
Exploits0References1
NVD
NVD
added 2026/04/15 5:16 a.m.4 views

CVE-2026-5397

It has been identified that a vulnerability CWE-427 exists in the UPS Uninterruptible Power Supply management application, whereby improper permissions on the installation directory allow a malicious actor to place a DLL that is then executed with administrator privileges. If a malicious DLL is...

7.8CVSS0.00126EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/02 5:5 p.m.5 views

CVE-2026-27774

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis True Image Windows before build 42902...

6.7CVSS6.7AI score0.00096EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/05 12:0 a.m.10 views

PT-2026-1297

Name of the Vulnerable Software and Affected Versions Samsung Magician versions 6.3.0 through 8.3.2 Description The software installer creates a temporary folder with insufficient permissions during the installation process on Windows. This allows a non-administrative user to potentially perform...

7.8CVSS6.7AI score0.00114EPSS
Exploits0References7
CVE
CVE
added 2025/12/18 7:57 p.m.8 views

CVE-2023-53937

Hubstaff 1.6.14 is affected by a DLL search order hijacking vulnerability that enables replacing the missing system32 wow64log.dll with a malicious library. An attacker could generate a custom DLL (e.g., via Metasploit) and place it in the system32 directory to obtain a reverse shell when the app...

8.5CVSS6.4AI score0.00189EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2025/12/10 4:9 p.m.15 views

CVE-2025-34417

CVE-2025-34417 affects MailEnable versions prior to 10.54. The issue is an unsafe DLL loading vulnerability where the MailEnable administrative executable loads MEAISO.DLL from its installation directory without sufficient integrity validation or a secure search order. A local attacker with write...

8.5CVSS7.1AI score0.0015EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2025/12/10 12:0 a.m.6 views

PT-2025-50328

A DLL hijacking vulnerability was reported in the Lenovo App Store and Lenovo Browser applications that could allow a local authenticated user to execute code with elevated privileges under certain conditions...

8.5CVSS7AI score0.00118EPSS
Exploits0References2
NVD
NVD
added 2025/11/26 1:16 a.m.5 views

CVE-2025-66265

CMService.exe creates the C:\usr directory and subdirectories with insecure permissions, granting write access to all authenticated users. This allows attackers to replace configuration files such as snmp.conf or hijack DLLs to escalate privileges...

6.9CVSS0.00099EPSS
Exploits0References1
NVD
NVD
added 2025/11/23 5:15 p.m.3 views

CVE-2024-21922

A DLL hijacking vulnerability in AMD StoreMI™ could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution...

7.3CVSS0.00127EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/19 6:31 a.m.5 views

EUVD-2025-198124

When the service of ABP and AES is installed in a directory writable by non-administrative users, an attacker can replace or plant a DLL with the same name as one loaded by the service. Upon service restart, the malicious DLL is loaded and executed under the LocalSystem account, resulting in...

9.3CVSS6.9AI score0.00188EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/10/01 12:0 a.m.3 views

PT-2025-40250

Name of the Vulnerable Software and Affected Versions DigiSign DigiSigner ONE version 1.0.4.60 Description The software allows for DLL hijacking. This means a malicious actor could potentially replace legitimate DLL files with crafted ones, leading to code execution. Recommendations At the moment...

8.8CVSS7AI score0.00525EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/09/30 12:0 a.m.5 views

PT-2025-39996

Name of the Vulnerable Software and Affected Versions Acronis True Image Windows versions prior to build 42386 Description A local privilege escalation issue exists due to a DLL hijacking weakness. This allows an attacker to potentially gain elevated privileges on a system. Recommendations Update...

7.3CVSS7.3AI score0.00163EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/09/12 12:21 p.m.4 views

CVE-2025-10215

DLL search path hijacking vulnerability in the UPDF.exe executable for Windows version 1.8.5.0 allows attackers with local access to execute arbitrary code by placing a FREngine.dll file of their choice in the 'C:\Users\Public\AppData\Local\UPDF\FREngine\Bin64' directory, which could lead to...

7CVSS7.8AI score0.00157EPSS
Exploits0References1
OSV
OSV
added 2025/09/10 12:15 p.m.3 views

CVE-2025-10215

DLL search path hijacking vulnerability in the UPDF.exe executable for Windows version 1.8.5.0 allows attackers with local access to execute arbitrary code by placing a FREngine.dll file of their choice in the 'C:\Users\Public\AppData\Local\UPDF\FREngine\Bin64' directory, which could lead to...

7.8CVSS6.3AI score0.00157EPSS
Exploits0References1
OSV
OSV
added 2025/09/10 12:15 p.m.5 views

CVE-2025-10213

DLL search path hijacking vulnerability in the UPDF.exe executable for Windows version 1.8.5.0 allows attackers with local access to execute arbitrary code by placing a dxtn.dll file of their choice in the 'C:\Users\AppData\Local\Microsoft\WindowsApps' directory, which could lead to arbitrary...

7.8CVSS6.3AI score0.00157EPSS
Exploits0References1
Rows per page
Query Builder