CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

56 matches found

CVE-2026-47274

pamusb provides hardware authentication for Linux using ordinary removable media. Prior to 0.9.0, multiple pamusb helper tools resolved external binaries through the PATH environment variable rather than using absolute paths. An attacker who can influence the process environment during PAM...

6.3CVSS5.9AI score0.0002EPSS

Exploits0References1

EUVD•added 2026/05/27 8:2 p.m.•2 views

EUVD-2026-32651

6.3CVSS5.9AI score0.0002EPSS

Exploits0References4

Positive Technologies•added 2026/05/27 12:0 a.m.•2 views

PT-2026-44087

pam usb provides hardware authentication for Linux using ordinary removable media. Prior to 0.9.0, multiple pam usb helper tools resolved external binaries through the PATH environment variable rather than using absolute paths. An attacker who can influence the process environment during PAM...

6.3CVSS5.9AI score0.0002EPSS

Exploits0References5

NVD•added 2026/04/01 2:16 a.m.•1 views

CVE-2026-3780

The application's installer runs with elevated privileges but resolves system executables and DLLs using untrusted search paths that can include user-writable directories, allowing a local attacker to place malicious binaries with the same names and have them loaded or executed instead of the...

7.8CVSS0.00014EPSS

Exploits0References1

OSV•added 2026/03/10 8:37 a.m.•1 views

BIT-DOCKER-CLI-2025-15558 Docker Desktop Docker Plugins Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

Docker CLI for Windows searches for plugin binaries in C:\ProgramData\Docker\cli-plugins, a directory that does not exist by default. A low-privileged attacker can create this directory and place malicious CLI plugin binaries docker-compose.exe, docker-buildx.exe, etc. that are executed when a...

8CVSS5.8AI score0.00023EPSS

Exploits0References4

Vulnrichment•added 2026/02/11 2:56 p.m.•2 views

CVE-2019-25309 Zilab Remote Console Server 3.2.9 - 'Zilab Remote Console Server' Unquoted Service Path

Zilab Remote Console Server 3.2.9 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path in the service configuration to inject malicious executables that wil...

8.5CVSS6AI score0.00006EPSS

Exploits0References3

CNNVD•added 2026/02/09 12:0 a.m.•3 views

sumatrapdf 代码问题漏洞

Sumatrapdf is an open-source PDF reader developed by SumatraPDF Reader. Versions of SumatraPDF 3.5.2 and earlier have code vulnerabilities. These vulnerabilities stem from the PDF reader allowing execution of malicious binary files located in the same directory as the opened PDF, potentially...

7.8CVSS6.2AI score0.00021EPSS

Exploits1References1

OSV•added 2026/01/13 11:15 p.m.•1 views

CVE-2022-50931

TeamSpeak 3.5.6 contains an insecure file permissions vulnerability that allows local attackers to replace executable files with malicious binaries. Attackers can replace system executables like ts3clientwin32.exe with custom files to potentially gain SYSTEM or Administrator-level access...

7.8CVSS5.8AI score

Exploits0References4

Vulnrichment•added 2026/01/13 10:51 p.m.•5 views

CVE-2022-50931 TeamSpeak 3.5.6 - Insecure File Permissions

8.5CVSS6.4AI score0.00022EPSS

Exploits1References4

Positive Technologies•added 2026/01/13 12:0 a.m.•1 views

PT-2026-2407

Name of the Vulnerable Software and Affected Versions TeamSpeak version 3.5.6 Description TeamSpeak 3.5.6 has a file permissions issue that allows local attackers to replace executable files with malicious binaries. An attacker can replace system executables, such as ts3client win32.exe, with...

8.5CVSS6.3AI score0.00022EPSS

Exploits1References8

Positive Technologies•added 2026/01/13 12:0 a.m.•3 views

PT-2026-2404

Name of the Vulnerable Software and Affected Versions BlueSoleilCS version 5.4.277 Description BlueSoleilCS version 5.4.277 has a security issue related to an unquoted service path in its Windows service configuration. This could allow local attackers to execute arbitrary code. The vulnerable pat...

8.5CVSS6.7AI score0.0002EPSS

Exploits1References7

Positive Technologies•added 2026/01/06 12:0 a.m.•1 views

PT-2026-1450

TDM Digital Signage PC Player 4.1.0.4 contains an elevation of privileges vulnerability that allows authenticated users to modify executable files. Attackers can leverage the 'Modify' permissions for authenticated users to replace executable files with malicious binaries and gain elevated system...

8.8CVSS6.9AI score0.00043EPSS

Exploits1References8

EUVD•added 2025/11/10 6:30 p.m.•2 views

EUVD-2025-48941

The Qualys Cloud Agent included a bundled uninstall script qagentuninstall.sh, specific to MacOS and Linux supported versions that invoked multiple system commands without using absolute paths and without sanitizing the $PATH environment. If the uninstall script is executed with elevated privileg...

6.3CVSS6.9AI score0.00004EPSS

Exploits0References2

ATTACKERKB•added 2025/11/10 5:10 p.m.•4 views

CVE-2025-43079

The Qualys Cloud Agent included a bundled uninstall script qagentuninstall.sh, specific to Mac and Linux supported versions that invoked multiple system commands without using absolute paths and without sanitizing the $PATH environment. If the uninstall script is executed with elevated privileges...

6.3CVSS6AI score0.00004EPSS

Exploits0References2Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-5448

Malware in sbrugna...

7.8CVSS7.6AI score0.00068EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-38816

Malicious code in bioql PyPI...

7.8CVSS7.4AI score0.00488EPSS

Exploits0References6