Vulnerabilities > Untrusted Search Path

DATE CVE VULNERABILITY TITLE RISK
2024-08-29 CVE-2024-5623 Untrusted Search Path vulnerability in Br-Automation Industrial Automation Aprol
An untrusted search path vulnerability in B&R APROL <= R 4.4-00P3 may be used by an authenticated local attacker to get other users to execute arbitrary code under their privileges.
local
low complexity
br-automation CWE-426
7.8
2024-08-14 CVE-2024-42439 Untrusted Search Path vulnerability in Zoom products
Untrusted search path in the installer for Zoom Workplace Desktop App for macOS and Zoom Meeting SDK for macOS before 6.1.0 may allow a privileged user to conduct an escalation of privilege via local access.
local
low complexity
zoom CWE-426
6.5
2024-08-14 CVE-2024-41865 Untrusted Search Path vulnerability in Adobe Dimension
Dimension versions 3.4.11 and earlier are affected by an Untrusted Search Path vulnerability that could lead to arbitrary code execution.
local
low complexity
adobe CWE-426
7.8
2024-07-31 CVE-2024-6975 Untrusted Search Path vulnerability in Catonetworks Cato Client
Cato Networks Windows SDP Client Local Privilege Escalation via openssl configuration file. This issue affects SDP Client before 5.10.34.
local
low complexity
catonetworks CWE-426
8.8
2024-02-14 CVE-2024-24697 Untrusted Search Path vulnerability in Zoom products
Untrusted search path in some Zoom 32 bit Windows clients may allow an authenticated user to conduct an escalation of privilege via local access.
local
low complexity
zoom CWE-426
7.8
2024-02-06 CVE-2024-23304 Untrusted Search Path vulnerability in Cybozu Kunai 3.0.20/3.0.21
Cybozu KUNAI for Android 3.0.20 to 3.0.21 allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition by performing certain operations.
network
low complexity
cybozu CWE-426
7.5
2024-02-04 CVE-2021-4435 Untrusted Search Path vulnerability in Yarnpkg Yarn
An untrusted search path vulnerability was found in Yarn.
local
low complexity
yarnpkg CWE-426
7.8
2023-12-22 CVE-2023-48670 Untrusted Search Path vulnerability in Dell Supportassist for Home PCS 3.14.2.45116
Dell SupportAssist for Home PCs version 3.14.1 and prior versions contain a privilege escalation vulnerability in the installer.
local
low complexity
dell CWE-426
7.8
2023-11-16 CVE-2023-26031 Untrusted Search Path vulnerability in Apache Hadoop 3.3.1/3.3.2/3.3.4
Relative library resolution in linux container-executor binary in Apache Hadoop 3.3.1-3.3.4 on Linux allows local user to gain root privileges.
network
high complexity
apache CWE-426
7.5
2023-11-14 CVE-2023-39202 Untrusted Search Path vulnerability in Zoom Rooms and Virtual Desktop Infrastructure
Untrusted search path in Zoom Rooms Client for Windows and Zoom VDI Client may allow a privileged user to conduct a denial of service via local access.
local
low complexity
zoom CWE-426
5.5