Vulnerabilities > Uncontrolled Search Path Element

DATE CVE VULNERABILITY TITLE RISK
2020-07-21 CVE-2020-15723 Uncontrolled Search Path Element vulnerability in 360Totalsecurity 360 Total Security
In the version 12.1.0.1004 and below of 360 Total Security, when the main process of 360 Total Security calls GameChrome.exe, there exists a local privilege escalation vulnerability.
local
low complexity
360totalsecurity CWE-427
7.8
2020-07-21 CVE-2020-15722 Uncontrolled Search Path Element vulnerability in 360Totalsecurity 360 Total Security
In version 12.1.0.1004 and below of 360 Total Security,when TPI calls the browser process, there exists a local privilege escalation vulnerability.
local
low complexity
360totalsecurity CWE-427
7.8
2020-07-09 CVE-2020-12423 Uncontrolled Search Path Element vulnerability in Mozilla Firefox
When the Windows DLL "webauthn.dll" was missing from the Operating System, and a malicious one was placed in a folder in the user's %PATH%, Firefox may have loaded the DLL, leading to arbitrary code execution.
local
low complexity
mozilla CWE-427
7.8
2020-07-06 CVE-2020-9100 Uncontrolled Search Path Element vulnerability in Huawei Hisuite
Earlier than HiSuite 10.1.0.500 have a DLL hijacking vulnerability.
local
low complexity
huawei CWE-427
7.8
2020-07-03 CVE-2019-20419 Uncontrolled Search Path Element vulnerability in Atlassian Jira Data Center and Jira Server
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to execute arbitrary code via a DLL hijacking vulnerability in Tomcat.
local
low complexity
atlassian CWE-427
7.8
2020-06-22 CVE-2020-13279 Uncontrolled Search Path Element vulnerability in Gitlab Gitlab-Vscode-Extension
Client side code execution in gitlab-vscode-extension v2.2.0 allows attacker to execute code on user system
local
low complexity
gitlab CWE-427
8.6
2020-06-19 CVE-2019-20856 Uncontrolled Search Path Element vulnerability in Mattermost Desktop 3.4.0/4.0.0/4.2.2
An issue was discovered in Mattermost Desktop App before 4.3.0 on macOS.
network
low complexity
mattermost CWE-427
critical
9.8
2020-06-10 CVE-2019-3613 Uncontrolled Search Path Element vulnerability in Mcafee Agent
DLL Search Order Hijacking vulnerability in McAfee Agent (MA) prior to 5.6.4 allows attackers with local access to execute arbitrary code via execution from a compromised folder.
local
low complexity
mcafee CWE-427
7.3
2020-06-09 CVE-2020-9858 Uncontrolled Search Path Element vulnerability in Apple Windows Migration Assistant
A dynamic library loading issue was addressed with improved path searching.
local
low complexity
apple CWE-427
7.8
2020-05-28 CVE-2020-5357 Uncontrolled Search Path Element vulnerability in Dell products
Dell Dock Firmware Update Utilities for Dell Client Consumer and Commercial docking stations contain an Arbitrary File Overwrite vulnerability.
local
high complexity
dell CWE-427
6.0