Vulnerabilities > Untrusted Search Path

DATE CVE VULNERABILITY TITLE RISK
2020-02-12 CVE-2013-3494 Untrusted Search Path vulnerability in Umplayer Project Umplayer 0.98
A Code Execution Vulnerability exists in UMPlayer 0.98 in wintab32.dll due to insufficient path restrictions when loading external libraries.
local
low complexity
umplayer-project CWE-426
7.8
2020-02-11 CVE-2013-3942 Untrusted Search Path vulnerability in Daum Potplayer
Potplayer prior to 1.5.39659: DLL Loading Arbitrary Code Execution Vulnerability
local
low complexity
daum CWE-426
7.8
2020-02-03 CVE-2019-4732 Untrusted Search Path vulnerability in IBM SDK and Websphere Application Server
IBM SDK, Java Technology Edition Version 7.0.0.0 through 7.0.10.55, 7.1.0.0 through 7.1.4.55, and 8.0.0.0 through 8.0.6.0 could allow a local authenticated attacker to execute arbitrary code on the system, caused by DLL search order hijacking vulnerability in Microsoft Windows client.
local
low complexity
ibm CWE-426
6.5
2020-01-27 CVE-2019-17099 Untrusted Search Path vulnerability in Bitdefender Endpoint Security Tools
An Untrusted Search Path vulnerability in EPSecurityService.exe as used in Bitdefender Endpoint Security Tools versions prior to 6.6.11.163 allows an attacker to load an arbitrary DLL file from the search path.
local
low complexity
bitdefender CWE-426
7.8
2020-01-27 CVE-2019-17100 Untrusted Search Path vulnerability in Bitdefender Total Security 2020
An Untrusted Search Path vulnerability in bdserviceshost.exe as used in Bitdefender Total Security 2020 allows an attacker to execute arbitrary code.
local
low complexity
bitdefender CWE-426
6.5
2020-01-14 CVE-2013-2773 Untrusted Search Path vulnerability in Gonitro Nitropdf 8.5.0.26
Nitro PDF 8.5.0.26: A specially crafted DLL file can facilitate Arbitrary Code Execution
local
low complexity
gonitro CWE-426
7.8
2020-01-08 CVE-2016-6593 Untrusted Search Path vulnerability in Symantec VIP Access Desktop
A code-execution vulnerability exists during startup in jhi.dll and otpiha.dll in Symantec VIP Access Desktop before 2.2.2, which could let local malicious users execute arbitrary code.
local
low complexity
symantec CWE-426
7.8
2019-12-26 CVE-2019-6019 Untrusted Search Path vulnerability in IPA Stamp Workbench
Untrusted search path vulnerability in STAMP Workbench installer all versions allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
ipa CWE-426
7.8
2019-12-23 CVE-2019-19929 Untrusted Search Path vulnerability in Malwarebytes Adwcleaner
An Untrusted Search Path vulnerability in Malwarebytes AdwCleaner before 8.0.1 could cause arbitrary code execution with SYSTEM privileges when a malicious DLL library is loaded by the product.
local
low complexity
malwarebytes CWE-426
7.8
2019-12-18 CVE-2019-18996 Untrusted Search Path vulnerability in ABB Pb610 Panel Builder 600 1.90.0.975/2.8.0.424
Path settings in HMIStudio component of ABB PB610 Panel Builder 600 versions 2.8.0.424 and earlier accept DLLs outside of the program directory, potentially allowing an attacker with access to the local file system the execution of code in the application’s context.
local
low complexity
abb CWE-426
7.8