Weaknesses of type CWE-427
842 resultsCVE-2025-57624HIGHA DLL hijacking vulnerability in CYRISMA Agent before 444 allows local users to escalate privileges and execute arbitrary code via multiple EPSS 0.1%CVE-2025-14498HIGHTradingView Desktop Electron Uncontrolled Search Path Local Privilege Escalation VulnerabilityEPSS 0.1%CVE-2025-40827HIGHA vulnerability has been identified in Siemens Software Center (All versions < V3.5), Solid Edge SE2025 (All versions < V225.0 Update 10). TEPSS 0.1%CVE-2026-36574HIGHA DLL hijacking vulnerability in Wassimulator (GitHub) CactusViewer v2.3.0 allows attackers to escalate privileges and execute arbitrary codEPSS 0.1%CVE-2025-62185MEDIUMIn Ankitects Anki before 25.02.5, a crafted shared deck can place a YouTube downloader executable in the media folder, and this is executed EPSS 0.1%CVE-2026-40004MEDIUMopenssl.cnf Privilege Escalation Vulnerability in ZTE Cloud PC Client uSmartviewEPSS 0.1%CVE-2026-41567HIGHDocker: `PUT /containers/{id}/archive` executes container binary on the hostEPSS 0.1%CVE-2025-2272HIGHPrivilege Escalation and Arbitrary code execution in F1E EndpointEPSS 0.1%CVE-2024-2207MEDIUMSound Research SECOMN64 Escalation of PrivilegeEPSS 0.1%CVE-2026-12003MEDIUMCPython >3.11 Insecure Input Validation resulting in privilege escalationEPSS 0.1%CVE-2026-6645HIGHInsecure Search Path Vulnerability in PaperCut Print Deploy Client for WindowsEPSS 0.1%CVE-2026-22270MEDIUMDell PowerScale OneFS, versions prior to 9.10.1.6 and versions 9.11.0.0 through 9.12.0.1, contains an uncontrolled search path element vulneEPSS 0.1%CVE-2025-67450HIGHDue to insecure library loading in the Eaton UPS Companion software executable, an attacker with access to the software package
could perfEPSS 0.1%CVE-2024-55955MEDIUMAn incorrect permissions assignment vulnerability in Trend Micro Deep Security 20.0 agents between versions 20.0.1-9400 and 20.0.1-23340 couEPSS 0.1%CVE-2025-48503HIGHA DLL hijacking vulnerability in the AMD Software Installer could allow an attacker to achieve privilege escalation potentially resulting inEPSS 0.1%CVE-2022-50808HIGHCoolerMaster MasterPlus 1.8.5 - 'MPService' Unquoted Service PathEPSS 0.1%CVE-2026-50100HIGHMultiple printer drivers provided by Ricoh Company, Ltd. and KONICA MINOLTA JAPAN, INC. contain a privilege escalation vulnerability. If thiEPSS 0.1%CVE-2025-49158MEDIUMAn uncontrolled search path vulnerability in the Trend Micro Apex One security agent could allow a local attacker to escalation privileges oEPSS 0.1%CVE-2026-21420HIGHDell Repository Manager (DRM), versions prior to 3.4.8, contains an Uncontrolled Search Path Element vulnerability. A low privileged attackeEPSS 0.1%CVE-2026-8637HIGHA potential uncontrolled search path vulnerability was reported in the LanSchool Classic client application that could allow a local authentEPSS 0.1%