Vulnerabilities > Uncontrolled Search Path Element

DATE CVE VULNERABILITY TITLE RISK
2021-06-09 CVE-2021-0057 Uncontrolled Search Path Element vulnerability in Intel Lapbc510 Firmware and Lapbc710 Firmware
Uncontrolled search path in the Intel(R) NUC M15 Laptop Kit Driver Pack software before updated version 1.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-427
7.8
2021-06-09 CVE-2021-0090 Uncontrolled Search Path Element vulnerability in Intel Driver & Support Assistant
Uncontrolled search path element in Intel(R) DSA before version 20.11.50.9 may allow an authenticated user to potentially enable an escalation of privilege via local access.
local
low complexity
intel CWE-427
7.3
2021-06-09 CVE-2021-0104 Uncontrolled Search Path Element vulnerability in Intel Rapid Storage Technology
Uncontrolled search path element in the installer for the Intel(R) Rapid Storage Technology software, before versions 17.9.0.34, 18.0.0.640 and 18.1.0.24, may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-427
7.8
2021-06-09 CVE-2021-0108 Uncontrolled Search Path Element vulnerability in Intel Unite
Uncontrolled search path in the Intel Unite(R) Client for Windows before version 4.2.25031 may allow an authenticated user to potentially enable an escalation of privilege via local access.
local
low complexity
intel CWE-427
7.3
2021-06-09 CVE-2020-8702 Uncontrolled Search Path Element vulnerability in Intel Processor Diagnostic Tool
Uncontrolled search path element in the Intel(R) Processor Diagnostic Tool before version 4.1.5.37 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-427
7.3
2021-05-26 CVE-2019-4588 Uncontrolled Search Path Element vulnerability in IBM DB2
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow a local user to execute arbitrary code and conduct DLL hijacking attacks.
local
low complexity
ibm CWE-427
7.8
2021-05-24 CVE-2021-20722 Uncontrolled Search Path Element vulnerability in Fujitsu Scansnap Manager
Untrusted search path vulnerability in the installers of ScanSnap Manager prior to versions V7.0L20 and the Software Download Installer prior to WinSSInst2JP.exe and WinSSInst2iX1500JP.exe allows an attacker to gain privileges and execute arbitrary code with the privilege of the user invoking the installer via a Trojan horse DLL in an unspecified directory.
local
low complexity
fujitsu CWE-427
7.8
2021-05-24 CVE-2021-20726 Uncontrolled Search Path Element vulnerability in Overwolf
Untrusted search path vulnerability in The Installer of Overwolf 2.168.0.n and earlier allows an attacker to gain privileges and execute arbitrary code with the privilege of the user invoking the installer via a Trojan horse DLL in an unspecified directory.
local
low complexity
overwolf CWE-427
7.8
2021-05-18 CVE-2021-3423 Uncontrolled Search Path Element vulnerability in Bitdefender Gravityzone Business Security
Uncontrolled Search Path Element vulnerability in the openssl component as used in Bitdefender GravityZone Business Security allows an attacker to load a third party DLL to elevate privileges.
local
low complexity
bitdefender CWE-427
7.8
2021-05-17 CVE-2020-24755 Uncontrolled Search Path Element vulnerability in UI Unifi Video 3.10.13
In Ubiquiti UniFi Video v3.10.13, when the executable starts, its first library validation is in the current directory.
local
low complexity
ui CWE-427
7.8