Vulnerabilities > Uncontrolled Search Path Element
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-03 | CVE-2023-41780 | Uncontrolled Search Path Element vulnerability in ZTE Zxcloud Irai Firmware There is an unsafe DLL loading vulnerability in ZTE ZXCLOUD iRAI. | 7.8 |
| 2023-12-25 | CVE-2023-43064 | Uncontrolled Search Path Element vulnerability in IBM I Facsimile Support for IBM i 7.2, 7.3, 7.4, and 7.5 could allow a local user to gain elevated privileges due to an unqualified library call. | 7.8 |
| 2023-12-17 | CVE-2023-6891 | Uncontrolled Search Path Element vulnerability in Peazip 9.4.0 A vulnerability has been found in PeaZip 9.4.0 and classified as problematic. | 7.8 |
| 2023-12-13 | CVE-2023-31210 | Uncontrolled Search Path Element vulnerability in Checkmk 2.2.0 Usage of user controlled LD_LIBRARY_PATH in agent in Checkmk 2.2.0p10 up to 2.2.0p16 allows malicious Checkmk site user to escalate rights via injection of malicious libraries | 7.8 |
| 2023-12-12 | CVE-2020-28369 | Uncontrolled Search Path Element vulnerability in Beyondtrust Privilege Management for Windows In BeyondTrust Privilege Management for Windows (aka PMfW) through 5.7, a SYSTEM installation causes Cryptbase.dll to be loaded from the user-writable location %WINDIR%\Temp. | 7.8 |
| 2023-12-12 | CVE-2023-48677 | Uncontrolled Search Path Element vulnerability in Acronis Cyber Protect Home Office Local privilege escalation due to DLL hijacking vulnerability. | 7.8 |
| 2023-12-12 | CVE-2023-41117 | Uncontrolled Search Path Element vulnerability in Enterprisedb Postgres Advanced Server An issue was discovered in EnterpriseDB Postgres Advanced Server (EPAS) before 11.21.32, 12.x before 12.16.20, 13.x before 13.12.16, 14.x before 14.9.0, and 15.x before 15.4.0. | 9.8 |
| 2023-12-07 | CVE-2023-48861 | Uncontrolled Search Path Element vulnerability in Baidu Ttplayer 7.0.2 DLL hijacking vulnerability in TTplayer version 7.0.2, allows local attackers to escalate privileges and execute arbitrary code via urlmon.dll. | 7.8 |
| 2023-12-04 | CVE-2023-41613 | Uncontrolled Search Path Element vulnerability in Ezviz Studio 2.2.0 EzViz Studio v2.2.0 is vulnerable to DLL hijacking. | 7.8 |
| 2023-12-01 | CVE-2023-45252 | Uncontrolled Search Path Element vulnerability in Huddly Huddlycameraservice DLL Hijacking vulnerability in Huddly HuddlyCameraService before version 8.0.7, not including version 7.99, due to the installation of the service in a directory that grants write privileges to standard users, allows attackers to manipulate files, execute arbitrary code, and escalate privileges. | 7.8 |