Vulnerabilities > Untrusted Search Path

DATE CVE VULNERABILITY TITLE RISK
2019-12-18 CVE-2019-8801 Untrusted Search Path vulnerability in Apple Itunes and mac OS X
A dynamic library loading issue existed in iTunes setup.
local
low complexity
apple CWE-426
7.8
2019-12-16 CVE-2019-14599 Untrusted Search Path vulnerability in Intel Control Center-I 2.1.0.0
Unquoted service path in Control Center-I version 2.1.0.0 and earlier may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-426
7.8
2019-12-12 CVE-2019-4606 Untrusted Search Path vulnerability in IBM DB2 High Performance Unload Load
IBM DB2 High Performance Unload load for LUW 6.1 and 6.5 could allow a local attacker to execute arbitrary code on the system, caused by an untrusted search path vulnerability.
local
low complexity
ibm CWE-426
7.8
2019-12-02 CVE-2019-15628 Untrusted Search Path vulnerability in Trendmicro products
Trend Micro Security (Consumer) 2020 (v16.0.1221 and below) is affected by a DLL hijacking vulnerability that could allow an attacker to use a specific service as an execution and/or persistence mechanism which could execute a malicious program each time the service is started.
local
low complexity
trendmicro CWE-426
7.8
2019-11-22 CVE-2019-17446 Untrusted Search Path vulnerability in Eracent EPA Agent 10.2.26
An issue was discovered in Eracent EPA Agent through 10.2.26.
local
low complexity
eracent CWE-426
7.8
2019-11-20 CVE-2019-6189 Untrusted Search Path vulnerability in Lenovo System Interface Foundation 1.0.66.0
A potential vulnerability was reported in Lenovo System Interface Foundation versions before v1.1.18.3 that could allow an administrative user to load an unsigned DLL.
local
low complexity
lenovo CWE-426
7.8
2019-11-19 CVE-2019-16861 Untrusted Search Path vulnerability in Code42
Code42 server through 7.0.2 for Windows has an Untrusted Search Path.
local
low complexity
code42 CWE-426
7.3
2019-11-19 CVE-2019-16860 Untrusted Search Path vulnerability in Code42
Code42 app through version 7.0.2 for Windows has an Untrusted Search Path.
local
low complexity
code42 CWE-426
7.3
2019-11-13 CVE-2019-3648 Untrusted Search Path vulnerability in Mcafee products
A Privilege Escalation vulnerability in the Microsoft Windows client in McAfee Total Protection 16.0.R22 and earlier allows administrators to execute arbitrary code via carefully placing malicious files in specific locations protected by administrator permission.
local
low complexity
mcafee CWE-426
6.7
2019-10-24 CVE-2019-18196 Untrusted Search Path vulnerability in Teamviewer
A DLL side loading vulnerability in the Windows Service in TeamViewer versions up to 11.0.133222 (fixed in 11.0.214397), 12.0.181268 (fixed in 12.0.214399), 13.2.36215 (fixed in 13.2.36216), and 14.6.4835 (fixed in 14.7.1965) on Windows could allow an attacker to perform code execution on a target system via a service restart where the DLL was previously installed with administrative privileges.
local
low complexity
teamviewer CWE-426
6.7