Lucene search
K

14 matches found

Cvelist
Cvelist
added 2026/06/12 1:30 p.m.27 views

CVE-2026-11967 Arbitrary code execution in MobaXterm Personal Edition (Portable)

MobaXterm Personal Edition Portable, in its 26.3 version Build 5154, allows arbitrary code execution by loading a malicious DLL located in the same directory as the portable executable. Because the application automatically loads the winspool.drv library from that location during startup, an...

8.5CVSS0.00108EPSS
Exploits0References1
OSV
OSV
added 2025/12/10 4:16 p.m.5 views

CVE-2025-34423

MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAIAU.DLL from its installation directory without sufficient integrity validation or a secure search order. A...

7.8CVSS6.1AI score0.00144EPSS
Exploits0References3
Metasploit
Metasploit
added 2025/11/22 6:58 p.m.263 views

Notepad++ Plugin Persistence

This module create persistence by adding a malicious plugin to Notepad++, as it blindly loads and executes DLL from its plugin directory on startup, meaning that the payload will be executed every time Notepad++ is launched. Module Options msf use...

7AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-54374

Malicious code in bioql PyPI...

8.4CVSS8.9AI score0.01802EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/09 9:3 a.m.11 views

CVE-2024-11859

DLL Search Order Hijacking vulnerability potentially allowed an attacker with administrator privileges to load a malicious dynamic-link library and execute its code...

8.4CVSS7AI score0.01802EPSS
Exploits0References3
OSV
OSV
added 2024/12/04 2:15 a.m.9 views

CVE-2024-45207

DLL injection in Veeam Agent for Windows can occur if the system's PATH variable includes insecure locations. When the agent runs, it searches these directories for necessary DLLs. If an attacker places a malicious DLL in one of these directories, the Veeam Agent might load it inadvertently,...

7CVSS5.9AI score0.00177EPSS
Exploits0References1
NCSC
NCSC
added 2024/04/02 12:0 a.m.7 views

Vulnerability fixed in Flexera Software FlexNet Publisher

Flexera Software has fixed a vulnerability in FlexNet Publisher. A local malicious person could exploit the vulnerability to grant itself elevated privileges and execute code with elevated privileges. To exploit the vulnerability, a malicious party must load a specially prepared SSL configuration...

8.5CVSS6.8AI score0.00419EPSS
Exploits0
OSV
OSV
added 2023/06/23 8:15 p.m.7 views

CVE-2023-27908

A maliciously crafted DLL file can be forced to write beyond allocated boundaries in the Autodesk installer when parsing the DLL files and could lead to a Privilege Escalation vulnerability...

7.8CVSS5.8AI score0.00225EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/06/02 12:0 a.m.4 views

F5 BIG-IP Edge Gateway代码问题漏洞

F5 BIG-IP Edge Gateway is a remote access solution from F5 USA. An elevation of privilege vulnerability exists in F5 BIG-IP Edge Gateway, which stems from a faulty program call to an advanced native procedure, where a non-privileged user uses a malicious DLL to elevate power on a client Windows...

7.8CVSS5.7AI score0.003EPSS
Exploits0References3
OSV
OSV
added 2019/06/12 4:29 p.m.4 views

CVE-2019-10971

The application Network Configurator for DeviceNet Safety 3.41 and prior searches for resources by means of an untrusted search path that could execute a malicious .dll file not under the application's direct control and outside the intended directories...

7.8CVSS7.2AI score0.01056EPSS
Exploits0References1
CNVD
CNVD
added 2019/05/20 12:0 a.m.4 views

Fortinet FortiClient Code Execution Vulnerability

Fortinet FortiClient is a mobile endpoint security solution from Fortinet. The solution provides IPsec and SSL encryption, WAN optimization, endpoint compliance and two-factor authentication when connected to a FortiGate firewall appliance. A security vulnerability exists in Fortinet FortiClient...

9.3CVSS7.2AI score0.02613EPSS
Exploits0References1
CNVD
CNVD
added 2017/11/21 12:0 a.m.4 views

Cisco FindIT Network Discovery Utility Local Arbitrary Code Execution Vulnerability

Cisco FindIT Network Discovery Utility is a network device manager from Cisco USA. The product provides management functions for Cisco network devices. A local arbitrary code execution vulnerability exists in Cisco FindIT Network Discovery Utility that originates when the program loads a maliciou...

7.8CVSS7.5AI score0.00356EPSS
Exploits0References1
CNVD
CNVD
added 2017/07/10 12:0 a.m.6 views

Installer of CASL II simulator untrustworthy search path vulnerability

CASL II simulator is a CASL II an assembly language simulator from Information Technology Promotion Agency ITPA, Japan.Installer is one of the installation programs. An untrusted search path vulnerability exists in the Installer of CASL II simulator. The vulnerability can be exploited by an...

7.8CVSS7.2AI score0.00911EPSS
Exploits0References1
CNVD
CNVD
added 2017/06/13 12:0 a.m.2 views

Simeji for Windows Installer Untrusted Search Path Vulnerability

Simeji for Windows is a suite of Windows-based Japanese input method applications. An untrusted search path vulnerability exists in the installer simeji.exe in Simeji for Windows. The vulnerability can be exploited to gain privileges through a malicious DLL file in a directory...

9.3CVSS7.2AI score0.0108EPSS
Exploits0References1
Rows per page
Query Builder