Vulnerabilities > Uncontrolled Search Path Element
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-22 | CVE-2020-5316 | Uncontrolled Search Path Element vulnerability in Dell products Dell SupportAssist for Business PCs versions 2.0, 2.0.1, 2.0.2, 2.1, 2.1.1, 2.1.2, 2.1.3 and Dell SupportAssist for Home PCs version 2.0, 2.0.1, 2.0.2, 2.1, 2.1.1, 2.1.2, 2.1.3, 2.2, 2.2.1, 2.2.2, 2.2.3, 3.0, 3.0.1, 3.0.2, 3.1, 3.2, 3.2.1, 3.2.2, 3.3, 3.3.1, 3.3.2, 3.3.3, 3.4 contain an uncontrolled search path vulnerability. | 7.8 |
| 2021-07-22 | CVE-2021-1089 | Uncontrolled Search Path Element vulnerability in Nvidia GPU Display Driver NVIDIA GPU Display Driver for Windows contains a vulnerability in nvidia-smi where an uncontrolled DLL loading path may lead to arbitrary code execution, denial of service, information disclosure, and data tampering. | 7.8 |
| 2021-07-16 | CVE-2021-3550 | Uncontrolled Search Path Element vulnerability in Lenovo Pcmanager A DLL search path vulnerability was reported in Lenovo PCManager, prior to version 3.0.500.5102, that could allow privilege escalation. | 7.8 |
| 2021-07-15 | CVE-2020-11634 | Uncontrolled Search Path Element vulnerability in Zscaler Client Connector 2.1/2.1.2/2.1.2.81 The Zscaler Client Connector for Windows prior to 2.1.2.105 had a DLL hijacking vulnerability caused due to the configuration of OpenSSL. | 7.8 |
| 2021-07-15 | CVE-2021-36753 | Uncontrolled Search Path Element vulnerability in BAT Project BAT sharkdp BAT before 0.18.2 executes less.exe from the current working directory. | 7.8 |
| 2021-07-15 | CVE-2021-3042 | Uncontrolled Search Path Element vulnerability in Paloaltonetworks Cortex XDR Agent 6.1/7.2/7.3 A local privilege escalation (PE) vulnerability exists in the Palo Alto Networks Cortex XDR agent on Windows platforms that enables an authenticated local Windows user to execute programs with SYSTEM privileges. | 7.8 |
| 2021-07-14 | CVE-2020-29157 | Uncontrolled Search Path Element vulnerability in Raonwiz Raon K Editor 2018.0.0.10 An issue in RAONWIZ K Editor v2018.0.0.10 allows attackers to perform a DLL hijacking attack when the service or system is restarted. | 7.8 |
| 2021-07-13 | CVE-2021-22000 | Uncontrolled Search Path Element vulnerability in VMWare Thinapp VMware Thinapp version 5.x prior to 5.2.10 contain a DLL hijacking vulnerability due to insecure loading of DLLs. | 7.8 |
| 2021-07-13 | CVE-2021-35957 | Uncontrolled Search Path Element vulnerability in Stormshield Endpoint Security 2.0.0/2.0.2 Stormshield Endpoint Security Evolution 2.0.0 through 2.0.2 does not accomplish the intended defense against local administrators who can replace the Visual C++ runtime DLLs (in %WINDIR%\system32) with malicious ones. | 6.7 |
| 2021-07-13 | CVE-2021-36376 | Uncontrolled Search Path Element vulnerability in Delta Project Delta dandavison delta before 0.8.3 on Windows resolves an executable's pathname as a relative path from the current directory. | 7.8 |