Vulnerabilities > Untrusted Search Path
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-26 | CVE-2023-34145 | Untrusted Search Path vulnerability in Trendmicro Apex ONE An untrusted search path vulnerability in the Trend Micro Apex One and Apex One as a Service security agent could allow a local attacker to escalate their privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. This is a similar, but not identical vulnerability as CVE-2023-34144. | 7.8 |
| 2023-04-18 | CVE-2023-28143 | Untrusted Search Path vulnerability in Qualys Cloud Agent 2.5.175 Qualys Cloud Agent for macOS (versions 2.5.1-75 before 3.7) installer allows a local escalation of privilege bounded only to the time of installation and only on older macOSX (macOS 10.15 and older) versions. Attackers may exploit incorrect file permissions to give them ROOT command execution privileges on the host. | 7.0 |
| 2023-04-04 | CVE-2023-27759 | Untrusted Search Path vulnerability in Wondershare Edrawmind 10.0.6 An issue found in Wondershare Technology Co, Ltd Edrawmind v.10.0.6 allows a remote attacker to executea arbitrary commands via the WindowsCodescs.dll file. | 7.8 |
| 2023-04-04 | CVE-2023-27760 | Untrusted Search Path vulnerability in Wondershare Filmora 12.0.9 An issue found in Wondershare Technology Co, Ltd Filmora v.12.0.9 allows a remote attacker to execute arbitrary commands via the filmora_setup_full846.exe. | 7.8 |
| 2023-04-04 | CVE-2023-27761 | Untrusted Search Path vulnerability in Wondershare Uniconverter 14.0.0 An issue found in Wondershare Technology Co., Ltd UniConverter v.14.0.0 allows a remote attacker to execute arbitrary commands via the uniconverter14_64bit_setup_full14204.exe file. | 7.8 |
| 2023-04-04 | CVE-2023-27762 | Untrusted Search Path vulnerability in Wondershare Democreator 6.0.0 An issue found in Wondershare Technology Co., Ltd DemoCreator v.6.0.0 allows a remote attacker to execute arbitrary commands via the democreator_setup_full7743.exe file. | 7.8 |
| 2023-04-04 | CVE-2023-27763 | Untrusted Search Path vulnerability in Wondershare Mobiletrans 4.0.2 An issue found in Wondershare Technology Co.,Ltd MobileTrans v.4.0.2 allows a remote attacker to execute arbitrary commands via the mobiletrans_setup_full5793.exe file. | 7.8 |
| 2023-04-04 | CVE-2023-27764 | Untrusted Search Path vulnerability in Wondershare Repairit 3.5.4 An issue found in Wondershare Technology Co.,Ltd Repairit v.3.5.4 allows a remote attacker to execute arbitrary commands via the repairit_setup_full5913.exe file. | 7.8 |
| 2023-04-04 | CVE-2023-27765 | Untrusted Search Path vulnerability in Wondershare Recoverit 10.6.3 An issue found in Wondershare Technology Co.,Ltd Recoverit v.10.6.3 allows a remote attacker to execute arbitrary commands via the recoverit_setup_full4134.exe file. | 7.8 |
| 2023-04-04 | CVE-2023-27766 | Untrusted Search Path vulnerability in Wondershare Anireel 1.5.4 An issue found in Wondershare Technology Co.,Ltd Anireel 1.5.4 allows a remote attacker to execute arbitrary commands via the anireel_setup_full9589.exe file. | 7.8 |