Vulnerabilities > Untrusted Search Path
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-07-17 | CVE-2020-9673 | Untrusted Search Path vulnerability in Adobe Coldfusion 2016/2018 Adobe ColdFusion 2016 update 15 and earlier versions, and ColdFusion 2018 update 9 and earlier versions have a dll search-order hijacking vulnerability. | 7.8 |
| 2020-07-17 | CVE-2020-9672 | Untrusted Search Path vulnerability in Adobe Coldfusion 2016/2018 Adobe ColdFusion 2016 update 15 and earlier versions, and ColdFusion 2018 update 9 and earlier versions have a dll search-order hijacking vulnerability. | 7.8 |
| 2020-07-15 | CVE-2020-15602 | Untrusted Search Path vulnerability in Trendmicro products An untrusted search path remote code execution (RCE) vulnerability in the Trend Micro Secuity 2020 (v16.0.0.1146 and below) consumer family of products could allow an attacker to run arbitrary code on a vulnerable system. | 7.8 |
| 2020-07-14 | CVE-2020-1458 | Untrusted Search Path vulnerability in Microsoft 365 Apps A remote code execution vulnerability exists when Microsoft Office improperly validates input before loading dynamic link library (DLL) files, aka 'Microsoft Office Remote Code Execution Vulnerability'. | 7.8 |
| 2020-06-30 | CVE-2019-19161 | Untrusted Search Path vulnerability in Cymiinstaller322 Activex Project Cymiinstaller322 Activex 2016.5.26.1 CyMiInstaller322 ActiveX which runs MIPLATFORM downloads files required to run applications. | 7.2 |
| 2020-06-26 | CVE-2020-3768 | Untrusted Search Path vulnerability in Adobe Coldfusion 2016/2018 ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have a dll search-order hijacking vulnerability. | 7.8 |
| 2020-06-10 | CVE-2020-7279 | Untrusted Search Path vulnerability in Mcafee Host Intrusion Prevention 8.0.0 DLL Search Order Hijacking Vulnerability in the installer component of McAfee Host Intrusion Prevention System (Host IPS) for Windows prior to 8.0.0 Patch 15 Update allows attackers with local access to execute arbitrary code via execution from a compromised folder. | 7.8 |
| 2020-06-09 | CVE-2019-6196 | Untrusted Search Path vulnerability in Lenovo Installation Package A symbolic link vulnerability in some Lenovo installation packages, prior to version 1.2.9.3, could allow privileged file operations during file extraction and installation. | 7.3 |
| 2020-06-09 | CVE-2019-6173 | Untrusted Search Path vulnerability in Lenovo Installation Package A DLL search path vulnerability could allow privilege escalation in some Lenovo installation packages, prior to version 1.2.9.3, during installation if an attacker already has administrative privileges. | 6.5 |
| 2020-06-04 | CVE-2018-21241 | Untrusted Search Path vulnerability in Foxitsoftware Phantompdf An issue was discovered in Foxit PhantomPDF before 8.3.6. | 7.8 |