Vulnerabilities > Uncontrolled Search Path Element
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-11-02 | CVE-2018-7799 | Uncontrolled Search Path Element vulnerability in Schneider-Electric Software Update Utility A DLL hijacking vulnerability exists in Schneider Electric Software Update (SESU), all versions prior to V2.2.0, which could allow an attacker to execute arbitrary code on the targeted system when placing a specific DLL file. | 7.8 |
| 2018-10-24 | CVE-2018-14812 | Uncontrolled Search Path Element vulnerability in Fujielectric Energy Savings Estimator 1.0.2.0 An uncontrolled search path element (DLL Hijacking) vulnerability has been identified in Fuji Electric Energy Savings Estimator versions V.1.0.2.0 and prior. | 7.8 |
| 2018-10-17 | CVE-2018-15976 | Uncontrolled Search Path Element vulnerability in Adobe Technical Communications Suite 1.0.5.1 Adobe Technical Communications Suite versions 1.0.5.1 and below have an insecure library loading (dll hijacking) vulnerability. | 7.8 |
| 2018-10-02 | CVE-2018-11072 | Uncontrolled Search Path Element vulnerability in Dell Digital Delivery Dell Digital Delivery versions prior to 3.5.1 contain a DLL Injection Vulnerability. | 7.8 |
| 2018-09-12 | CVE-2018-12163 | Uncontrolled Search Path Element vulnerability in Intel IOT Developers KIT 4.0 A DLL injection vulnerability in the Intel IoT Developers Kit 4.0 installer may allow an authenticated user to potentially escalate privileges using file modification via local access. | 4.8 |
| 2018-09-12 | CVE-2018-13806 | Uncontrolled Search Path Element vulnerability in Siemens TD Keypad Designer A vulnerability has been identified in SIEMENS TD Keypad Designer (All versions). | 7.8 |
| 2018-08-23 | CVE-2018-14797 | Uncontrolled Search Path Element vulnerability in Emerson Deltav Emerson DeltaV DCS versions 11.3.1, 12.3.1, 13.3.0, 13.3.1, R5 allow a specially crafted DLL file to be placed in the search path and loaded as an internal and valid DLL, which may allow arbitrary code execution. | 7.8 |
| 2018-08-22 | CVE-2018-5238 | Uncontrolled Search Path Element vulnerability in Symantec Norton Power Eraser and Symdiag Norton Power Eraser (prior to 5.3.0.24) and SymDiag (prior to 2.1.242) may be susceptible to a DLL Preloading vulnerability, which is a type of issue that can occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead. | 7.8 |
| 2018-08-22 | CVE-2018-5235 | Uncontrolled Search Path Element vulnerability in Symantec Norton Utilities Norton Utilities (prior to 16.0.3.44) may be susceptible to a DLL Preloading vulnerability, which is a type of issue that can occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead. | 6.0 |
| 2018-07-25 | CVE-2018-8090 | Uncontrolled Search Path Element vulnerability in Quickheal Antivirus Pro, Internet Security and Total Security Quick Heal Total Security 64 bit 17.00 (QHTS64.exe), (QHTSFT64.exe) - Version 10.0.1.38; Quick Heal Total Security 32 bit 17.00 (QHTS32.exe), (QHTSFT32.exe) - Version 10.0.1.38; Quick Heal Internet Security 64 bit 17.00 (QHIS64.exe), (QHISFT64.exe) - Version 10.0.0.37; Quick Heal Internet Security 32 bit 17.00 (QHIS32.exe), (QHISFT32.exe) - Version 10.0.0.37; Quick Heal AntiVirus Pro 64 bit 17.00 (QHAV64.exe), (QHAVFT64.exe) - Version 10.0.0.37; and Quick Heal AntiVirus Pro 32 bit 17.00 (QHAV32.exe), (QHAVFT32.exe) - Version 10.0.0.37 allow DLL Hijacking because of Insecure Library Loading. | 7.8 |