Vulnerabilities > Uncontrolled Search Path Element

DATE CVE VULNERABILITY TITLE RISK
2022-08-18 CVE-2022-25841 Uncontrolled Search Path Element vulnerability in Intel Datacenter Group Event
Uncontrolled search path elements in the Intel(R) Datacenter Group Event Android application, all versions, may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-427
7.8
2022-08-18 CVE-2022-25999 Uncontrolled Search Path Element vulnerability in Intel Enpirion Digital Power Configurator GUI
Uncontrolled search path element in the Intel(R) Enpirion(R) Digital Power Configurator GUI software, all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-427
7.8
2022-08-18 CVE-2022-26374 Uncontrolled Search Path Element vulnerability in Intel Single Event API
Uncontrolled search path in the installation binaries for Intel(R) SEAPI all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-427
7.8
2022-08-18 CVE-2022-28696 Uncontrolled Search Path Element vulnerability in Intel Distribution for Python 2017/2018/2019
Uncontrolled search path in the Intel(R) Distribution for Python before version 2022.0.3 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-427
7.8
2022-08-05 CVE-2022-36840 Uncontrolled Search Path Element vulnerability in Samsung Update
DLL hijacking vulnerability in Samsung Update Setup prior to version 2.2.9.50 allows attackers to execute arbitrary code.
local
low complexity
samsung CWE-427
7.8
2022-07-27 CVE-2021-38410 Uncontrolled Search Path Element vulnerability in Aveva products
AVEVA Software Platform Common Services (PCS) Portal versions 4.5.2, 4.5.1, 4.5.0, and 4.4.6 are vulnerable to DLL hijacking through an uncontrolled search path element, which may allow an attacker control to one or more locations in the search path.
local
low complexity
aveva CWE-427
7.8
2022-07-27 CVE-2022-2313 Uncontrolled Search Path Element vulnerability in Mcafee Agent
A DLL hijacking vulnerability in the MA Smart Installer for Windows prior to 5.7.7, which allows local users to execute arbitrary code and obtain higher privileges via careful placement of a malicious DLL into the folder from where the Smart installer is being executed.
local
low complexity
mcafee CWE-427
7.3
2022-07-23 CVE-2022-36415 Uncontrolled Search Path Element vulnerability in Scootersoftware Beyond Compare
A DLL hijacking vulnerability exists in the uninstaller in Scooter Beyond Compare 1.8a through 4.4.2 before 4.4.3 when installed via the EXE installer.
local
low complexity
scootersoftware CWE-427
7.8
2022-07-21 CVE-2022-32498 Uncontrolled Search Path Element vulnerability in Dell Powerstore Command Line Interface
Dell EMC PowerStore, Versions prior to v3.0.0.0 contain a DLL Hijacking vulnerability in PSTCLI.
local
low complexity
dell CWE-427
7.8
2022-07-18 CVE-2022-34900 Uncontrolled Search Path Element vulnerability in Parallels Access 6.5.4(39313)
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Access 6.5.3 (39313) Agent.
local
low complexity
parallels CWE-427
7.8