Vulnerabilities > Uncontrolled Search Path Element
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-11-13 | CVE-2018-15452 | Uncontrolled Search Path Element vulnerability in Cisco Advanced Malware Protection FOR Endpoints A vulnerability in the DLL loading component of Cisco Advanced Malware Protection (AMP) for Endpoints on Windows could allow an authenticated, local attacker to disable system scanning services or take other actions to prevent detection of unauthorized intrusions. | 4.6 |
| 2018-11-02 | CVE-2018-7799 | Uncontrolled Search Path Element vulnerability in Schneider-Electric Software Update Utility 1.0/1.0.13/1.1 A DLL hijacking vulnerability exists in Schneider Electric Software Update (SESU), all versions prior to V2.2.0, which could allow an attacker to execute arbitrary code on the targeted system when placing a specific DLL file. | 9.3 |
| 2018-10-24 | CVE-2018-14812 | Uncontrolled Search Path Element vulnerability in Fujielectric Energy Savings Estimator 1.0.2.0 An uncontrolled search path element (DLL Hijacking) vulnerability has been identified in Fuji Electric Energy Savings Estimator versions V.1.0.2.0 and prior. | 6.8 |
| 2018-10-17 | CVE-2018-15976 | Uncontrolled Search Path Element vulnerability in Adobe Technical Communications Suite 1.0.5.1 Adobe Technical Communications Suite versions 1.0.5.1 and below have an insecure library loading (dll hijacking) vulnerability. | 6.8 |
| 2018-10-02 | CVE-2018-11072 | Uncontrolled Search Path Element vulnerability in Dell Digital Delivery Dell Digital Delivery versions prior to 3.5.1 contain a DLL Injection Vulnerability. | 7.2 |
| 2018-09-12 | CVE-2018-12163 | Uncontrolled Search Path Element vulnerability in Intel IOT Developers KIT 4.0 A DLL injection vulnerability in the Intel IoT Developers Kit 4.0 installer may allow an authenticated user to potentially escalate privileges using file modification via local access. | 6.8 |
| 2018-09-12 | CVE-2018-12160 | Uncontrolled Search Path Element vulnerability in Intel Data Migration Software 3.1 DLL injection vulnerability in software installer for Intel Data Center Migration Center Software v3.1 and before may allow an authenticated user to potentially execute code using default directory permissions via local access. | 4.6 |
| 2018-09-12 | CVE-2018-13806 | Uncontrolled Search Path Element vulnerability in Siemens TD Keypad Designer A vulnerability has been identified in SIEMENS TD Keypad Designer (All versions). | 9.3 |
| 2018-08-23 | CVE-2018-14797 | Uncontrolled Search Path Element vulnerability in Emerson Deltav Emerson DeltaV DCS versions 11.3.1, 12.3.1, 13.3.0, 13.3.1, R5 allow a specially crafted DLL file to be placed in the search path and loaded as an internal and valid DLL, which may allow arbitrary code execution. | 6.8 |
| 2018-08-22 | CVE-2018-5238 | Uncontrolled Search Path Element vulnerability in Symantec Norton Power Eraser and Symdiag Norton Power Eraser (prior to 5.3.0.24) and SymDiag (prior to 2.1.242) may be susceptible to a DLL Preloading vulnerability, which is a type of issue that can occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead. | 6.8 |