CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2026/06/16 3:16 p.m.•7 views

CVE-2024-22447

Dell Peripheral Manager, versions prior to 1.7.3, contain an uncontrolled search path element vulnerability. An attacker could potentially exploit this vulnerability through preloading malicious dll., leading to arbitrary code execution...

7.8CVSS0.00098EPSS

Malwarebytes•added 2026/02/23 8:2 a.m.•5 views

A week in security (February 16 – February 22)

Last week on Malwarebytes Labs: Age verification vendor Persona left frontend exposed, researchers say Facebook ads spread fake Windows 11 downloads that steal passwords and crypto wallets AI-generated passwords are a security risk Intimate products maker Tenga spilled customer data Meta patents ...

6AI score

Exploits0

Malwarebytes•added 2026/02/17 6:25 p.m.•7 views

Chrome “preloading” could be leaking your data and causing problems in Browser Guard

This article explains why Chrome’s “preloading” feature can cause scary-looking blocks in Malwarebytes Browser Guard and how to turn it off. Modern browsers want to provide content instantly. To do that, Chrome includes a feature called page preloading. When this is enabled, Chrome doesn’t just...

5.4AI score

Exploits0

OSV•added 2026/02/06 3:54 p.m.•5 views

OESA-2026-1287 python-urllib3 security update

HTTP library with thread-safe connection pooling, file post support, sanity friendly, and more. Security Fixes: urllib3 is an HTTP client library for Python. urllib3's streaming API is designed for the efficient handling of large HTTP responses by reading the content in chunks, rather than loadin...

8.9CVSS5.5AI score0.0068EPSS

Amazon•added 2026/02/05 12:0 a.m.•7 views

Important: python-pip

Issue Overview: urllib3 is an HTTP client library for Python. urllib3's streaming API is designed for the efficient handling of large HTTP responses by reading the content in chunks, rather than loading the entire response body into memory at once. urllib3 can perform decoding or decompression...

8.9CVSS5.5AI score0.0068EPSS

Exploits0

NVD•added 2026/01/26 6:16 p.m.•4 views

CVE-2025-71178

Crucial Storage Executive installer versions prior to 11.08.082025.00 contain a DLL preloading vulnerability. During installation, the installer runs with elevated privileges and loads Windows DLLs using an uncontrolled search path, which can cause a malicious DLL placed alongside the installer t...

7.1CVSS0.00185EPSS

Vulnrichment•added 2026/01/26 5:55 p.m.•2 views

CVE-2025-71178 Crucial Storage Executive < 11.08.082025.00 Installer DLL Preloading LPE

7.1CVSS6.3AI score0.00185EPSS

Cvelist•added 2026/01/26 5:55 p.m.•30 views

CVE-2025-71178 Crucial Storage Executive < 11.08.082025.00 Installer DLL Preloading LPE

7.1CVSS0.00185EPSS

Positive Technologies•added 2026/01/26 12:0 a.m.•5 views

PT-2026-4799

7.1CVSS6.3AI score0.00185EPSS

NVD•added 2026/01/21 6:16 p.m.•1 views

CVE-2026-23755

D-Link D-View 8 versions 2.0.1.107 and below contain an uncontrolled search path vulnerability in the installer. When executed with elevated privileges via UAC, the installer attempts to load version.dll from its execution directory, allowing DLL preloading. An attacker can supply a malicious...

8.4CVSS0.00141EPSS

Cvelist•added 2026/01/21 6:2 p.m.•17 views

CVE-2026-23755 D-Link D-View 8 Installer DLL Preloading via Uncontrolled Search Path

8.4CVSS0.00141EPSS

ATTACKERKB•added 2026/01/21 6:2 p.m.•3 views

CVE-2026-23755

8.4CVSS5.9AI score0.00141EPSS

CNNVD•added 2026/01/21 12:0 a.m.•6 views

D-Link D-View 8 code issues and vulnerabilities

D-Link D-View 8 is a comprehensive network management software developed by D-Link Corporation. Versions of D-Link D-View 8 2.0.1.107 and earlier contained a code vulnerability. This vulnerability stemmed from an uncontrolled search path within the installer, which could lead to DLL preloading an...

8.4CVSS6.1AI score0.00141EPSS

Positive Technologies•added 2026/01/21 12:0 a.m.•6 views

PT-2026-3843

8.4CVSS5.8AI score0.00141EPSS

CNNVD•added 2026/01/13 12:0 a.m.•2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the presence of a contention condition during SLB preloading, which could result in an SLB multi-hit error...

7.8CVSS7.1AI score0.0012EPSS

Exploits0References5

RedhatCVE•added 2026/01/09 10:19 a.m.•3 views

CVE-2019-18215

An issue was discovered in signmgr.dll 6.5.0.819 in Comodo Internet Security through 12.0. A DLL Preloading vulnerability allows an attacker to implant an unsigned DLL named iLog.dll in a partially unprotected product directory. This DLL is then loaded into a high-privileged service before the...

7.8CVSS6.8AI score0.0059EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 8:50 a.m.•7 views

CVE-2021-31840

A vulnerability in the preloading mechanism of specific dynamic link libraries in McAfee Agent for Windows prior to 5.7.3 could allow an authenticated, local attacker to perform a DLL preloading attack with unsigned DLLs. To exploit this vulnerability, the attacker would need to have valid...

7.3CVSS7.2AI score0.00348EPSS

RedhatCVE•added 2026/01/09 8:50 a.m.•7 views

CVE-2021-31847

Improper access control vulnerability in the repair process for McAfee Agent for Windows prior to 5.7.4 could allow a local attacker to perform a DLL preloading attack using unsigned DLLs. This would result in elevation of privileges and the ability to execute arbitrary code as the system user,...

8.2CVSS7.5AI score0.00386EPSS

RedhatCVE•added 2026/01/07 9:35 a.m.•20 views

CVE-2019-7365

DLL preloading vulnerability in Autodesk Desktop Application versions 7.0.16.29 and earlier. An attacker may trick a user into downloading a malicious DLL file into the working directory, which may then leverage a DLL preloading vulnerability and execute code on the system...

7.8CVSS7.2AI score0.00385EPSS