Lucene search
K

29 matches found

RedhatCVE
RedhatCVE
added 2025/12/11 5:2 p.m.5 views

CVE-2025-34418

MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAIMF.DLL from its installation directory without sufficient integrity validation or a secure search order. A...

8.5CVSS7.4AI score0.00144EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/10 6:30 p.m.5 views

EUVD-2025-202439

MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAIPC.DLL from its installation directory without sufficient integrity validation or a secure search order. A...

8.5CVSS6.9AI score0.00147EPSS
Exploits0References4
EUVD
EUVD
added 2025/12/10 6:30 p.m.6 views

EUVD-2025-202436

MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAISO.DLL from its installation directory without sufficient integrity validation or a secure search order. A...

8.5CVSS7AI score0.00144EPSS
Exploits0References4
NVD
NVD
added 2025/12/10 4:16 p.m.4 views

CVE-2025-34423

MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAIAU.DLL from its installation directory without sufficient integrity validation or a secure search order. A...

8.5CVSS0.00144EPSS
Exploits0References3
OSV
OSV
added 2025/12/10 4:16 p.m.8 views

CVE-2025-34422

MailEnable versions prior to 10.54 contain an unsafe DLL loading vulnerability that can lead to local arbitrary code execution. The MailEnable administrative executable attempts to load MEAIPC.DLL from its installation directory without sufficient integrity validation or a secure search order. A...

7.8CVSS6.1AI score0.00147EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/10 12:0 a.m.6 views

PT-2025-50340

Name of the Vulnerable Software and Affected Versions MailEnable versions prior to 10.54 Description MailEnable versions prior to 10.54 have an issue where an unsafe Dynamic Link Library DLL loading process can allow a local attacker to execute arbitrary code. The MailEnable administrative...

8.5CVSS6.9AI score0.00144EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-18513

Malware in sbrugna...

7.8CVSS7.7AI score0.00729EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-46272

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00221EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-58387

Malicious code in bioql PyPI...

7.8CVSS7.4AI score0.00193EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 5:14 a.m.6 views

CVE-2023-41780

There is an unsafe DLL loading vulnerability in ZTE ZXCLOUD iRAI. Due to the program failed to adequately validate the user's input, an attacker could exploit this vulnerability to escalate local privileges...

7.8CVSS6.9AI score0.00221EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:58 a.m.11 views

CVE-2023-6132

The vulnerability, if exploited, could allow a malicious entity with access to the file system to achieve arbitrary code execution and privilege escalation by tricking AVEVA Edge to load an unsafe DLL...

7.8CVSS8AI score0.00193EPSS
Exploits0
Prion
Prion
added 2024/02/29 6:15 p.m.32 views

Privilege escalation

The vulnerability, if exploited, could allow a malicious entity with access to the file system to achieve arbitrary code execution and privilege escalation by tricking AVEVA Edge to load an unsafe DLL...

4.1CVSS7.6AI score0.00193EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/02/29 5:40 p.m.11 views

CVE-2023-6132 AVEVA Edge products Uncontrolled Search Path Element

The vulnerability, if exploited, could allow a malicious entity with access to the file system to achieve arbitrary code execution and privilege escalation by tricking AVEVA Edge to load an unsafe DLL...

7.3CVSS8.2AI score0.00193EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/02/29 5:40 p.m.15 views

CVE-2023-6132 AVEVA Edge products Uncontrolled Search Path Element

The vulnerability, if exploited, could allow a malicious entity with access to the file system to achieve arbitrary code execution and privilege escalation by tricking AVEVA Edge to load an unsafe DLL...

7.3CVSS7.9AI score0.00193EPSS
Exploits0References2
CVE
CVE
added 2024/02/29 5:40 p.m.108 views

CVE-2023-6132

The CVE-2023-6132 issue affects AVEVA Edge (InduSoft Web Studio lineage) and is caused by an Uncontrolled Search Path Element that can let a local attacker trick AVEVA Edge into loading an unsafe DLL, enabling arbitrary code execution and privilege escalation. Affected products/versions include A...

7.8CVSS7.7AI score0.00193EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2022/04/28 11:15 a.m.5 views

CVE-2021-33436

NoMachine for Windows prior to version 6.15.1 and 7.5.2 suffer from local privilege escalation due to the lack of safe DLL loading. This vulnerability allows local non-privileged users to perform DLL Hijacking via any writable directory listed under the system path and ultimately execute code as ...

7.3CVSS7.2AI score0.0027EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/03/29 12:0 a.m.4 views

Rockwell Automation ISaGRAF 代码问题漏洞

Rockwell Automation ISaGRAF is an automation software technology for creating integrated automation solutions from Rockwell Automation. It is designed to be scalable and portable and is suitable for developing small controllers and large distributed automation systems. A code issue vulnerability...

5.5CVSS6.1AI score0.02072EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/09/11 12:0 a.m.15 views

Python 3.6.x < 3.6.11, 3.7.x < 3.7.7, 3.8.x < 3.8.2 Python Issue (bpo-39401) - Windows

Python CPython on Windows 7 is prone to an uncontrolled search path vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5.5CVSS7.7AI score0.01345EPSS
Exploits0References2
Kaspersky
Kaspersky
added 2018/04/19 12:0 a.m.568 views

KLA11237 Multiple vulnerabilities in Foxit Reader and Foxit PhantomPDF

Multiple serious vulnerabilities have been found in Foxit Reader and Foxit PhantomPDF. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service and execute arbitrary code. Below is a complete list of vulnerabilities: 1. An unsafe DLL loading...

8.8CVSS9.2AI score0.24033EPSS
Exploits12References4
CVE
CVE
added 2017/08/06 4:0 a.m.50 views

CVE-2017-12480

The CVE-2017-12480 entry concerns Sandboxie installer version 5071703 with a DLL hijacking/unsafe DLL loading vulnerability. An attacker could place a malicious dwmapi.dll or profapi.dll in an AppData\Local\Temp directory, leading to code execution when the installer loads the DLL. The issue is d...

7.8CVSS7.5AI score0.00994EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder