Vulnerabilities > Untrusted Search Path
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-03-23 | CVE-2020-7476 | Untrusted Search Path vulnerability in Schneider-Electric Ulti Zigbee Installation Toolkit A CWE-426: Untrusted Search Path vulnerability exists in ZigBee Installation Kit (Versions prior to 1.0.1), which could cause execution of malicious code when a malicious file is put in the search path. | 7.8 |
| 2020-03-05 | CVE-2020-9418 | Untrusted Search Path vulnerability in Redsoftware Pdfescape 4.0.22 An untrusted search path vulnerability in the installer of PDFescape Desktop version 4.0.22 and earlier allows an attacker to gain privileges and execute code via DLL hijacking. | 7.8 |
| 2020-03-02 | CVE-2017-12580 | Untrusted Search Path vulnerability in Ultraedit An issue was discovered in IDM UltraEdit through 24.10.0.32. | 7.8 |
| 2020-02-16 | CVE-2019-20456 | Untrusted Search Path vulnerability in Goverlan Client Agent, Reach Console and Reach Server Goverlan Reach Console before 9.50, Goverlan Reach Server before 3.50, and Goverlan Client Agent before 9.20.50 have an Untrusted Search Path that leads to Command Injection and Local Privilege Escalation via DLL hijacking. | 7.8 |
| 2020-02-12 | CVE-2014-3860 | Untrusted Search Path vulnerability in Xilisoft Video Converter 7.8.1 Xilisoft Video Converter Ultimate 7.8.1 build-20140505 has a DLL Hijacking vulnerability | 7.8 |
| 2020-02-12 | CVE-2013-3494 | Untrusted Search Path vulnerability in Umplayer Project Umplayer 0.98 A Code Execution Vulnerability exists in UMPlayer 0.98 in wintab32.dll due to insufficient path restrictions when loading external libraries. | 7.8 |
| 2020-02-11 | CVE-2013-3942 | Untrusted Search Path vulnerability in Daum Potplayer Potplayer prior to 1.5.39659: DLL Loading Arbitrary Code Execution Vulnerability | 7.8 |
| 2020-02-03 | CVE-2019-4732 | Untrusted Search Path vulnerability in IBM SDK and Websphere Application Server IBM SDK, Java Technology Edition Version 7.0.0.0 through 7.0.10.55, 7.1.0.0 through 7.1.4.55, and 8.0.0.0 through 8.0.6.0 could allow a local authenticated attacker to execute arbitrary code on the system, caused by DLL search order hijacking vulnerability in Microsoft Windows client. | 6.5 |
| 2020-01-27 | CVE-2019-17099 | Untrusted Search Path vulnerability in Bitdefender Endpoint Security Tools An Untrusted Search Path vulnerability in EPSecurityService.exe as used in Bitdefender Endpoint Security Tools versions prior to 6.6.11.163 allows an attacker to load an arbitrary DLL file from the search path. | 7.8 |
| 2020-01-27 | CVE-2019-17100 | Untrusted Search Path vulnerability in Bitdefender Total Security 2020 An Untrusted Search Path vulnerability in bdserviceshost.exe as used in Bitdefender Total Security 2020 allows an attacker to execute arbitrary code. | 6.5 |