Vulnerabilities > Uncontrolled Search Path Element
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-11 | CVE-2023-4936 | Uncontrolled Search Path Element vulnerability in Synaptics Displaylink USB Graphics It is possible to sideload a compromised DLL during the installation at elevated privilege. | 7.8 |
| 2023-10-09 | CVE-2023-45248 | Uncontrolled Search Path Element vulnerability in Acronis Agent Local privilege escalation due to DLL hijacking vulnerability. | 7.3 |
| 2023-10-06 | CVE-2023-35897 | Uncontrolled Search Path Element vulnerability in IBM Storage Protect and Storage Protect Client IBM Spectrum Protect Client and IBM Storage Protect for Virtual Environments 8.1.0.0 through 8.1.19.0 could allow a local user to execute arbitrary code on the system using a specially crafted file, caused by a DLL hijacking flaw. | 7.8 |
| 2023-09-18 | CVE-2023-41929 | Uncontrolled Search Path Element vulnerability in Samsung Memory Card & UFD Authentication A DLL hijacking vulnerability in Samsung Memory Card & UFD Authentication Utility PC Software before 1.0.1 could allow a local attacker to escalate privileges. | 7.3 |
| 2023-08-30 | CVE-2023-40596 | Uncontrolled Search Path Element vulnerability in Splunk In Splunk Enterprise versions earlier than 8.2.12, 9.0.6, and 9.1.1, a dynamic link library (DLL) that ships with Splunk Enterprise references an insecure path for the OPENSSLDIR build definition. | 8.8 |
| 2023-08-21 | CVE-2023-40352 | Uncontrolled Search Path Element vulnerability in Mcafee Safe Connect McAfee Safe Connect before 2.16.1.126 may allow an adversary with system privileges to achieve privilege escalation by loading arbitrary DLLs. | 7.2 |
| 2023-08-16 | CVE-2022-4894 | Uncontrolled Search Path Element vulnerability in multiple products Certain HP and Samsung Printer software packages may potentially be vulnerable to elevation of privilege due to Uncontrolled Search Path Element. | 7.3 |
| 2023-08-11 | CVE-2022-25864 | Uncontrolled Search Path Element vulnerability in Intel Oneapi Math Kernel Library Uncontrolled search path in some Intel(R) oneMKL software before version 2022.0 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2023-08-11 | CVE-2023-22841 | Uncontrolled Search Path Element vulnerability in Intel Server Firmware Update Utility Unquoted search path in the software installer for the System Firmware Update Utility (SysFwUpdt) for some Intel(R) Server Boards and Intel(R) Server Systems Based on Intel(R) 621A Chipset before version 16.0.7 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.3 |
| 2023-08-11 | CVE-2023-23577 | Uncontrolled Search Path Element vulnerability in Intel ITE Tech Consumer Infrared Driver Uncontrolled search path element for some ITE Tech consumer infrared drivers before version 5.5.2.1 for Intel(R) NUC may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.3 |