Vulnerabilities > Uncontrolled Search Path Element

DATE CVE VULNERABILITY TITLE RISK
2023-11-22 CVE-2023-46814 Uncontrolled Search Path Element vulnerability in Videolan VLC Media Player
A binary hijacking vulnerability exists within the VideoLAN VLC media player before 3.0.19 on Windows.
local
low complexity
videolan CWE-427
7.8
2023-11-15 CVE-2023-22818 Uncontrolled Search Path Element vulnerability in Westerndigital Sandisk Security Installer
Multiple DLL Search Order Hijack vulnerabilities were addressed in the SanDisk Security Installer for Windows that could allow attackers with local access to execute arbitrary code by executing the installer in the same folder as the malicious DLL. This can lead to the execution of arbitrary code with the privileges of the vulnerable application or obtain a certain level of persistence on the compromised host. 
local
low complexity
westerndigital CWE-427
7.8
2023-11-14 CVE-2023-27513 Uncontrolled Search Path Element vulnerability in Intel Server Information Retrieval Utility
Uncontrolled search path element in some Intel(R) Server Information Retrieval Utility software before version 16.0.9 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-427
7.8
2023-11-14 CVE-2023-28388 Uncontrolled Search Path Element vulnerability in Intel Chipset Device Software
Uncontrolled search path element in some Intel(R) Chipset Device Software before version 10.1.19444.8378 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-427
7.8
2023-11-14 CVE-2023-28740 Uncontrolled Search Path Element vulnerability in Intel products
Uncontrolled search path element in some Intel(R) QAT drivers for Windows - HW Version 2.0 before version 2.0.4 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-427
7.8
2023-11-14 CVE-2023-29161 Uncontrolled Search Path Element vulnerability in Intel ONE Boot Flash Update
Uncontrolled search path in some Intel(R) OFU software before version 14.1.31 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-427
7.8
2023-11-14 CVE-2023-29504 Uncontrolled Search Path Element vulnerability in Intel Realsense D400 Series Dynamic Calibration Tool 2.11
Uncontrolled search path element in some Intel(R) RealSense(TM) Dynamic Calibration software before version 2.13.1.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-427
7.8
2023-11-14 CVE-2023-32660 Uncontrolled Search Path Element vulnerability in Intel Thunderbolt 3 Controller Firmware 27/38
Uncontrolled search path in some Intel(R) NUC Kit NUC6i7KYK Thunderbolt(TM) 3 Firmware Update Tool installation software before version 46 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-427
7.3
2023-11-14 CVE-2023-33874 Uncontrolled Search Path Element vulnerability in Intel HID Event Filter Driver
Uncontrolled search path in some Intel(R) NUC 12 Pro Kits & Mini PCs - NUC12WS Intel(R) HID Event Filter Driver installation software before version 2.2.2.1 for Windows may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-427
7.3
2023-11-14 CVE-2023-34350 Uncontrolled Search Path Element vulnerability in Intel Extreme Tuning Utility 6.4.1.21/6.5.1.360/6.5.3.25
Uncontrolled search path element in some Intel(R) XTU software before version 7.12.0.15 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-427
7.8