Weaknesses of type CWE-427
842 resultsCVE-2025-2768HIGHBdrive NetDrive Uncontrolled Search Path Element Local Privilege Escalation VulnerabilityEPSS 0.2%CVE-2025-2769HIGHBdrive NetDrive Uncontrolled Search Path Element Local Privilege Escalation VulnerabilityEPSS 0.2%CVE-2026-44358HIGHEspressif Shared GitHub DangerJS: Untrusted Search Path in DangerJS Action EntrypointEPSS 0.2%CVE-2024-13976HIGHCommvault 11.20.0 - 11.36.0 Windows Maintenance Installer DLL InjectionEPSS 0.2%CVE-2024-47576LOWDLL Hijacking vulnerability in SAP Product Lifecycle CostingEPSS 0.2%CVE-2023-6740HIGHPrivilege escalation in jar_signatureEPSS 0.2%CVE-2024-48091HIGHTally Prime Edit Log v2.1 was discovered to contain a DLL hijacking vulnerability via the component TextShaping.dll. This vulnerability alloEPSS 0.2%CVE-2023-41929HIGHA DLL hijacking vulnerability in Samsung Memory Card & UFD Authentication Utility PC Software before 1.0.1 could allow a local attacker to eEPSS 0.2%CVE-2026-24502HIGHDell Command | Intel vPro Out of Band, versions prior to 4.7.0, contain an Uncontrolled Search Path Element vulnerability. A low privileged EPSS 0.2%CVE-2022-36840MEDIUMDLL hijacking vulnerability in Samsung Update Setup prior to version 2.2.9.50 allows attackers to execute arbitrary code.EPSS 0.2%CVE-2023-42920HIGHClaris International has fixed a dylib hijacking vulnerability in the FileMaker Pro.app and Claris Pro.app versions on macOS.EPSS 0.2%CVE-2024-34167MEDIUMUncontrolled search path for the Intel(R) Server Board S2600ST Family BIOS and Firmware Update software all versions may allow an authenticaEPSS 0.2%CVE-2025-69784HIGHA local, non-privileged attacker can abuse a vulnerable IOCTL interface exposed by the OpenEDR 2.5.1.0 kernel driver to modify the DLL injecEPSS 0.2%CVE-2023-29187MEDIUMDLL Hijacking vulnerability in SapSetup (Software Installation Program)EPSS 0.2%CVE-2024-21861MEDIUMUncontrolled search path in some Intel(R) GPA Framework software before version 2023.4 may allow an authenticated user to potentially enableEPSS 0.2%CVE-2022-32498MEDIUMDell EMC PowerStore, Versions prior to v3.0.0.0 contain a DLL Hijacking vulnerability in PSTCLI. A local attacker can potentially exploit thEPSS 0.2%CVE-2023-45320MEDIUMUncontrolled search path element in some Intel(R) VTune(TM) Profiler software before version 2024.0 may allow an authenticated user to potenEPSS 0.2%CVE-2026-22561MEDIUMUncontrolled search path elements in Anthropic Claude for Windows installer (Claude Setup.exe) versions prior to 1.1.3363 allow local privilEPSS 0.2%CVE-2024-31407MEDIUMUncontrolled search path in some Intel(R) High Level Synthesis Compiler software for Intel(R) Quartus(R) Prime Pro Edition Software before vEPSS 0.2%CVE-2023-28080MEDIUM
PowerPath for Windows, versions 7.0, 7.1 & 7.2 contains DLL Hijacking Vulnerabilities. A regular user (non-admin) can exploit these issues EPSS 0.2%