Vulnerabilities > Untrusted Search Path

DATE CVE VULNERABILITY TITLE RISK
2020-04-17 CVE-2020-7079 Untrusted Search Path vulnerability in Autodesk Dynamo BIM 2.5.0/2.5.1
An improper signature validation vulnerability in Autodesk Dynamo BIM versions 2.5.1 and 2.5.0 may lead to code execution through maliciously crafted DLL files.
local
low complexity
autodesk CWE-426
7.8
2020-04-15 CVE-2020-0598 Untrusted Search Path vulnerability in Intel Binary Configuration Tool
Uncontrolled search path in the installer for the Intel(R) Binary Configuration Tool for Windows, all versions, may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-426
7.8
2020-04-07 CVE-2020-8096 Untrusted Search Path vulnerability in Bitdefender Antimalware Software Development KIT
Untrusted Search Path vulnerability in Bitdefender High-Level Antimalware SDK for Windows allows an attacker to load third party code from a DLL library in the search path.
local
low complexity
bitdefender CWE-426
5.3
2020-04-06 CVE-2020-11507 Untrusted Search Path vulnerability in Malwarebytes Adwcleaner 8.0.3
An Untrusted Search Path vulnerability in Malwarebytes AdwCleaner 8.0.3 could cause arbitrary code execution with SYSTEM privileges when a malicious DLL library is loaded.
local
low complexity
malwarebytes CWE-426
7.8
2020-03-26 CVE-2020-7260 Untrusted Search Path vulnerability in Mcafee Application and Change Control
DLL Side Loading vulnerability in the installer for McAfee Application and Change Control (MACC) prior to 8.3 allows local users to execute arbitrary code via execution from a compromised folder.
local
low complexity
mcafee CWE-426
7.8
2020-03-23 CVE-2020-7476 Untrusted Search Path vulnerability in Schneider-Electric Ulti Zigbee Installation Toolkit
A CWE-426: Untrusted Search Path vulnerability exists in ZigBee Installation Kit (Versions prior to 1.0.1), which could cause execution of malicious code when a malicious file is put in the search path.
local
low complexity
schneider-electric CWE-426
7.8
2020-03-05 CVE-2020-9418 Untrusted Search Path vulnerability in Redsoftware Pdfescape 4.0.22
An untrusted search path vulnerability in the installer of PDFescape Desktop version 4.0.22 and earlier allows an attacker to gain privileges and execute code via DLL hijacking.
local
low complexity
redsoftware CWE-426
7.8
2020-03-02 CVE-2017-12580 Untrusted Search Path vulnerability in Ultraedit
An issue was discovered in IDM UltraEdit through 24.10.0.32.
local
low complexity
ultraedit CWE-426
7.8
2020-02-16 CVE-2019-20456 Untrusted Search Path vulnerability in Goverlan Client Agent, Reach Console and Reach Server
Goverlan Reach Console before 9.50, Goverlan Reach Server before 3.50, and Goverlan Client Agent before 9.20.50 have an Untrusted Search Path that leads to Command Injection and Local Privilege Escalation via DLL hijacking.
local
low complexity
goverlan CWE-426
7.8
2020-02-12 CVE-2014-3860 Untrusted Search Path vulnerability in Xilisoft Video Converter 7.8.1
Xilisoft Video Converter Ultimate 7.8.1 build-20140505 has a DLL Hijacking vulnerability
local
low complexity
xilisoft CWE-426
7.8