Vulnerabilities > Uncontrolled Search Path Element
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-30 | CVE-2023-47453 | Uncontrolled Search Path Element vulnerability in Sohu Video Player 7.0.15.0 An Untrusted search path vulnerability in Sohu Video Player 7.0.15.0 allows local users to gain escalated privileges through the version.dll file in the current working directory. | 7.8 |
| 2023-11-30 | CVE-2023-47454 | Uncontrolled Search Path Element vulnerability in Netease Cloudmusic 2.10.4 An Untrusted search path vulnerability in NetEase CloudMusic 2.10.4 for Windows allows local users to gain escalated privileges through the urlmon.dll file in the current working directory. | 7.8 |
| 2023-11-23 | CVE-2023-41787 | Uncontrolled Search Path Element vulnerability in Artica Pandora FMS Uncontrolled Search Path Element vulnerability in Pandora FMS on all allows Leveraging/Manipulating Configuration File Search Paths. | 7.5 |
| 2023-11-23 | CVE-2023-41790 | Uncontrolled Search Path Element vulnerability in Artica Pandora FMS Uncontrolled Search Path Element vulnerability in Pandora FMS on all allows Leveraging/Manipulating Configuration File Search Paths. | 9.8 |
| 2023-11-22 | CVE-2023-29069 | Uncontrolled Search Path Element vulnerability in Autodesk Desktop Connector A maliciously crafted DLL file can be forced to install onto a non-default location, and attacker can overwrite parts of the product with malicious DLLs. | 7.8 |
| 2023-11-22 | CVE-2023-46814 | Uncontrolled Search Path Element vulnerability in Videolan VLC Media Player A binary hijacking vulnerability exists within the VideoLAN VLC media player before 3.0.19 on Windows. | 7.8 |
| 2023-11-15 | CVE-2023-22818 | Uncontrolled Search Path Element vulnerability in Westerndigital Sandisk Security Installer Multiple DLL Search Order Hijack vulnerabilities were addressed in the SanDisk Security Installer for Windows that could allow attackers with local access to execute arbitrary code by executing the installer in the same folder as the malicious DLL. This can lead to the execution of arbitrary code with the privileges of the vulnerable application or obtain a certain level of persistence on the compromised host. | 7.8 |
| 2023-11-14 | CVE-2023-27513 | Uncontrolled Search Path Element vulnerability in Intel Server Information Retrieval Utility Uncontrolled search path element in some Intel(R) Server Information Retrieval Utility software before version 16.0.9 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2023-11-14 | CVE-2023-28388 | Uncontrolled Search Path Element vulnerability in Intel Chipset Device Software Uncontrolled search path element in some Intel(R) Chipset Device Software before version 10.1.19444.8378 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2023-11-14 | CVE-2023-28740 | Uncontrolled Search Path Element vulnerability in Intel products Uncontrolled search path element in some Intel(R) QAT drivers for Windows - HW Version 2.0 before version 2.0.4 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |