Vulnerabilities > Uncontrolled Search Path Element
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-09 | CVE-2021-0057 | Uncontrolled Search Path Element vulnerability in Intel Lapbc510 Firmware and Lapbc710 Firmware Uncontrolled search path in the Intel(R) NUC M15 Laptop Kit Driver Pack software before updated version 1.1 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2021-06-09 | CVE-2021-0090 | Uncontrolled Search Path Element vulnerability in Intel Driver & Support Assistant Uncontrolled search path element in Intel(R) DSA before version 20.11.50.9 may allow an authenticated user to potentially enable an escalation of privilege via local access. | 7.3 |
| 2021-06-09 | CVE-2021-0104 | Uncontrolled Search Path Element vulnerability in Intel Rapid Storage Technology Uncontrolled search path element in the installer for the Intel(R) Rapid Storage Technology software, before versions 17.9.0.34, 18.0.0.640 and 18.1.0.24, may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2021-06-09 | CVE-2021-0108 | Uncontrolled Search Path Element vulnerability in Intel Unite Uncontrolled search path in the Intel Unite(R) Client for Windows before version 4.2.25031 may allow an authenticated user to potentially enable an escalation of privilege via local access. | 7.3 |
| 2021-06-09 | CVE-2020-8702 | Uncontrolled Search Path Element vulnerability in Intel Processor Diagnostic Tool Uncontrolled search path element in the Intel(R) Processor Diagnostic Tool before version 4.1.5.37 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.3 |
| 2021-06-04 | CVE-2021-1536 | Uncontrolled Search Path Element vulnerability in Cisco products A vulnerability in Cisco Webex Meetings Desktop App for Windows, Cisco Webex Meetings Server, Cisco Webex Network Recording Player for Windows, and Cisco Webex Teams for Windows could allow an authenticated, local attacker to perform a DLL injection attack on an affected device. | 7.8 |
| 2021-05-26 | CVE-2019-4588 | Uncontrolled Search Path Element vulnerability in IBM DB2 IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow a local user to execute arbitrary code and conduct DLL hijacking attacks. | 7.8 |
| 2021-05-24 | CVE-2021-20722 | Uncontrolled Search Path Element vulnerability in Fujitsu Scansnap Manager Untrusted search path vulnerability in the installers of ScanSnap Manager prior to versions V7.0L20 and the Software Download Installer prior to WinSSInst2JP.exe and WinSSInst2iX1500JP.exe allows an attacker to gain privileges and execute arbitrary code with the privilege of the user invoking the installer via a Trojan horse DLL in an unspecified directory. | 7.8 |
| 2021-05-24 | CVE-2021-20726 | Uncontrolled Search Path Element vulnerability in Overwolf Untrusted search path vulnerability in The Installer of Overwolf 2.168.0.n and earlier allows an attacker to gain privileges and execute arbitrary code with the privilege of the user invoking the installer via a Trojan horse DLL in an unspecified directory. | 7.8 |
| 2021-05-18 | CVE-2021-3423 | Uncontrolled Search Path Element vulnerability in Bitdefender Gravityzone Business Security Uncontrolled Search Path Element vulnerability in the openssl component as used in Bitdefender GravityZone Business Security allows an attacker to load a third party DLL to elevate privileges. | 7.8 |