Vulnerabilities > Untrusted Search Path
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-01-15 | CVE-2024-55503 | Untrusted Search Path vulnerability in Termius An issue in termius before v.9.9.0 allows a local attacker to execute arbitrary code via a crafted script to the DYLD_INSERT_LIBRARIES component. | 3.3 |
| 2025-01-15 | CVE-2020-8094 | Untrusted Search Path vulnerability in Bitdefender Antivirus 2020 1.0.15.138 An untrusted search path vulnerability in testinitsigs.exe as used in Bitdefender Antivirus Free 2020 allows a low-privilege attacker to execute code as SYSTEM via a specially crafted DLL file. | 7.8 |
| 2024-11-12 | CVE-2024-49515 | Untrusted Search Path vulnerability in Adobe Substance 3D Painter Substance3D - Painter versions 10.1.0 and earlier are affected by an Untrusted Search Path vulnerability that might allow attackers to execute arbitrary code. | 7.8 |
| 2024-11-12 | CVE-2024-36507 | Untrusted Search Path vulnerability in Fortinet Forticlient A untrusted search path in Fortinet FortiClientWindows versions 7.4.0, versions 7.2.4 through 7.2.0, versions 7.0.12 through 7.0.0 allows an attacker to run arbitrary code via DLL hijacking and social engineering. | 7.8 |
| 2024-11-12 | CVE-2024-47906 | Untrusted Search Path vulnerability in Ivanti Connect Secure and Policy Secure Excessive binary privileges in Ivanti Connect Secure before version 22.7R2.3 (Not Applicable to 9.1Rx) and Ivanti Policy Secure before version 22.7R1.2 (Not Applicable to 9.1Rx) allows a local authenticated attacker to escalate privileges. | 7.8 |
| 2024-10-09 | CVE-2024-47422 | Untrusted Search Path vulnerability in Adobe Framemaker Adobe Framemaker versions 2020.6, 2022.4 and earlier are affected by an Untrusted Search Path vulnerability that could lead to arbitrary code execution. | 7.8 |
| 2024-09-29 | CVE-2024-9325 | Untrusted Search Path vulnerability in Intelbras Incontrol web A vulnerability classified as critical has been found in Intelbras InControl up to 2.21.56. | 7.8 |
| 2024-09-10 | CVE-2024-44103 | Untrusted Search Path vulnerability in Ivanti Workspace Control DLL hijacking in the management console of Ivanti Workspace Control version 10.18.0.0 and below allows a local authenticated attacker to escalate their privileges. | 7.8 |
| 2024-09-03 | CVE-2024-6473 | Untrusted Search Path vulnerability in Yandex Browser Yandex Browser for Desktop before 24.7.1.380 has a DLL Hijacking Vulnerability because an untrusted search path is used. | 7.8 |
| 2024-08-29 | CVE-2024-5622 | Untrusted Search Path vulnerability in Br-Automation Industrial Automation Aprol An untrusted search path vulnerability in the AprolConfigureCCServices of B&R APROL <= R 4.2.-07P3 and <= R 4.4-00P3 may allow an authenticated local attacker to execute arbitrary code with elevated privileges. | 7.8 |