Vulnerabilities > Uncontrolled Search Path Element

DATE CVE VULNERABILITY TITLE RISK
2023-02-16 CVE-2022-26425 Uncontrolled Search Path Element vulnerability in Intel Oneapi Collective Communications Library
Uncontrolled search path element in the Intel(R) oneAPI Collective Communications Library (oneCCL) before version 2021.6 for Intel(R) oneAPI Base Toolkit may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-427
7.3
2023-02-16 CVE-2022-26512 Uncontrolled Search Path Element vulnerability in Intel Fpga Add-On
Uncontrolled search path element in the Intel(R) FPGA Add-on for Intel(R) oneAPI Base Toolkit before version 2022.2 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-427
7.3
2023-02-16 CVE-2022-36398 Uncontrolled Search Path Element vulnerability in Intel Battery Life Diagnostic Tool 2.2.0
Uncontrolled search path in the Intel(R) Battery Life Diagnostic Tool software before version 2.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-427
7.8
2023-02-16 CVE-2022-37329 Uncontrolled Search Path Element vulnerability in Intel Quartus Prime
Uncontrolled search path in some Intel(R) Quartus(R) Prime Pro and Standard Edition software may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-427
7.3
2023-02-13 CVE-2022-48077 Uncontrolled Search Path Element vulnerability in Genymotion Desktop 3.3.2
Genymotion Desktop v3.3.2 was discovered to contain a DLL hijacking vulnerability that allows attackers to escalate privileges and execute arbitrary code via a crafted DLL.
local
low complexity
genymotion CWE-427
7.8
2023-02-09 CVE-2022-43440 Uncontrolled Search Path Element vulnerability in Checkmk
Uncontrolled Search Path Element in Checkmk Agent in Tribe29 Checkmk before 2.1.0p1, before 2.0.0p25 and before 1.6.0p29 on a Checkmk server allows the site user to escalate privileges via a manipulated unixcat executable
local
low complexity
checkmk CWE-427
7.8
2023-02-07 CVE-2022-31611 Uncontrolled Search Path Element vulnerability in Nvidia Geforce Experience
NVIDIA GeForce Experience contains an uncontrolled search path vulnerability in all its client installers, where an attacker with user level privileges may cause the installer to load an arbitrary DLL when the installer is launched.
local
low complexity
nvidia CWE-427
7.3
2023-02-06 CVE-2022-38136 Uncontrolled Search Path Element vulnerability in Intel Oneapi Dpc++/C++ Compiler 2022.1
Uncontrolled search path in the Intel(R) oneAPI DPC++/C++ Compiler for Windows and Intel Fortran Compiler for Windows before version 2022.2.1 for some Intel(R) oneAPI Toolkits before version 2022.3.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-427
7.3
2023-02-02 CVE-2023-0400 Uncontrolled Search Path Element vulnerability in Trellix Data Loss Prevention 11.9.0/11.9.100
The protection bypass vulnerability in DLP for Windows 11.9.x is addressed in version 11.10.0.
local
low complexity
trellix CWE-427
8.2
2023-02-01 CVE-2023-22358 Uncontrolled Search Path Element vulnerability in F5 Big-Ip Access Policy Manager
In versions beginning with 7.2.2 to before 7.2.3.1, a DLL hijacking vulnerability exists in the BIG-IP Edge Client Windows Installer.
local
low complexity
f5 CWE-427
7.8