Vulnerabilities > Uncontrolled Search Path Element

DATE CVE VULNERABILITY TITLE RISK
2021-02-17 CVE-2020-24485 Uncontrolled Search Path Element vulnerability in Intel Trace Analyzer and Collector Update1/Update2/Update3
Uncontrolled search path in the Intel(R) Trace Analyzer and Collector before version 2020 update 3 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
intel CWE-427
4.4
2021-02-17 CVE-2020-24451 Uncontrolled Search Path Element vulnerability in Intel Optane DC Persistent Memory Module Management
Uncontrolled search path in the Intel(R) Optane(TM) DC Persistent Memory installer for Windows* before version 1.00.00.3506 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
intel CWE-427
4.4
2021-01-27 CVE-2021-25247 Uncontrolled Search Path Element vulnerability in Trendmicro Housecall for Home Networks 5.3.0.1063
A DLL hijacking vulnerability Trend Micro HouseCall for Home Networks version 5.3.1063 and below could allow an attacker to use a malicious DLL to escalate privileges and perform arbitrary code execution.
4.4
2021-01-20 CVE-2021-1280 Uncontrolled Search Path Element vulnerability in Cisco Advanced Malware Protection for Endpoints and Immunet
A vulnerability in the loading mechanism of specific DLLs of Cisco Advanced Malware Protection (AMP) for Endpoints for Windows and Immunet for Windows could allow an authenticated, local attacker to perform a DLL hijacking attack.
local
cisco CWE-427
6.9
2021-01-13 CVE-2021-21011 Uncontrolled Search Path Element vulnerability in Adobe Captivate
Adobe Captivate 2019 version 11.5.1.499 (and earlier) is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation.
network
high complexity
adobe CWE-427
5.1
2021-01-13 CVE-2021-21010 Uncontrolled Search Path Element vulnerability in Adobe Incopy 15.1.3
InCopy version 15.1.1 (and earlier) for Windows is affected by an uncontrolled search path vulnerability that could result in arbitrary code execution in the context of the current user.
network
high complexity
adobe CWE-427
5.1
2021-01-13 CVE-2021-21008 Uncontrolled Search Path Element vulnerability in Adobe Animate 15.2.1.95/20.5/21.0
Adobe Animate version 21.0 (and earlier) is affected by an uncontrolled search path element that could result in arbitrary code execution in the context of the current user.
network
adobe CWE-427
6.8
2021-01-13 CVE-2021-21007 Uncontrolled Search Path Element vulnerability in Adobe Illustrator
Adobe Illustrator version 25.0 (and earlier) is affected by an uncontrolled search path element that could result in arbitrary code execution in the context of the current user.
network
adobe CWE-427
6.8
2021-01-13 CVE-2021-1240 Uncontrolled Search Path Element vulnerability in Cisco Proximity
A vulnerability in the loading process of specific DLLs in Cisco Proximity Desktop for Windows could allow an authenticated, local attacker to load a malicious library.
network
cisco CWE-427
8.5
2021-01-13 CVE-2021-1237 Uncontrolled Search Path Element vulnerability in Cisco Anyconnect Secure Mobility Client
A vulnerability in the Network Access Manager and Web Security Agent components of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to perform a DLL injection attack.
local
low complexity
cisco CWE-427
7.2