Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:46066
HistoryMar 28, 2024 - 11:24 a.m.

Untrusted Search Path

2024-03-2811:24:00
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
panelswwix4.sdk
untrusted search path
vulnerability
windows
temp directory
low privilege
user modifications
binary replacement

7 High

AI Score

Confidence

High

JSON

PanelSwWix4.Sdk is vulnerable to Untrusted Search Path. The vulnerability is due to Burn’s practice of copying binaries to the unprotected C:\Windows\Temp directory and running them from that unprotected location. This directory is not adequately protected against low privilege user modifications, allowing an attacker to replace the binary.

7 High

AI Score

Confidence

High

JSON