Fallos del tipo CWE-427
842 resultadosCVE-2026-32172HIGHMicrosoft Power Apps Remote Code Execution VulnerabilityEPSS 0.3%CVE-2018-15452MEDIUMCisco Advanced Malware Protection for Endpoints on Windows DLL Preloading VulnerabilityEPSS 0.3%CVE-2023-27362HIGH3CX Uncontrolled Search Path Local Privilege Escalation VulnerabilityEPSS 0.3%CVE-2025-27237HIGHDLL injection in Zabbix Agent and Agent 2 via OpenSSL configurationEPSS 0.3%CVE-2023-6401MEDIUMNotePad++ dbghelp.exe uncontrolled search pathEPSS 0.3%CVE-2022-28779MEDIUMUncontrolled search path element vulnerability in Samsung Android USB Driver windows installer program prior to version 1.7.50 allows attackEPSS 0.3%CVE-2021-22775—A CWE-427: Uncontrolled Search Path Element vulnerability exists in GP-Pro EX,V4.09.250 and prior, that could cause local code execution witEPSS 0.3%CVE-2024-7326HIGHIObit DualSafe Password Manager BPL RTL120.BPL uncontrolled search pathEPSS 0.3%CVE-2020-6785HIGHUncontrolled Search Path Element in Bosch BVMS and BVMS ViewerEPSS 0.3%CVE-2021-1536MEDIUMCisco Webex Meetings, Webex Network Recording Player, and Webex Teams DLL Injection VulnerabilityEPSS 0.3%CVE-2021-43940HIGHAffected versions of Atlassian Confluence Server and Data Center allow authenticated local attackers to achieve elevated privileges on the lEPSS 0.3%CVE-2026-22619HIGHEaton Intelligent Power Protector (IPP) is affected by insecure library loading in its executable, which could lead to arbitrary code executEPSS 0.3%CVE-2020-6244HIGHSAP Business Client, version 7.0, allows an attacker after a successful social engineering attack to inject malicious code as a DLL file in EPSS 0.3%CVE-2022-34901HIGHThis vulnerability allows local attackers to escalate privileges on affected installations of Parallels Access 6.5.4 (39316) Agent. An attacEPSS 0.3%CVE-2022-34902HIGHThis vulnerability allows local attackers to escalate privileges on affected installations of Parallels Access 6.5.4 (39316) Agent. An attacEPSS 0.3%CVE-2024-57426HIGHNetMod VPN Client 5.3.1 is vulnerable to DLL injection, allowing an attacker to execute arbitrary code by placing a malicious DLL in a direcEPSS 0.3%CVE-2021-36631MEDIUMUntrusted search path vulnerability in Baidunetdisk Version 7.4.3 and earlier allows an attacker to gain privileges via a Trojan horse DLL iEPSS 0.3%CVE-2021-4007HIGHRapid7 Insight Agent Privilege EscalationEPSS 0.3%CVE-2019-3750MEDIUMDell Command Update versions prior to 3.1 contain an Arbitrary File Deletion Vulnerability. A local authenticated malicious user with low prEPSS 0.3%CVE-2019-3749MEDIUMDell Command Update versions prior to 3.1 contain an Arbitrary File Deletion Vulnerability. A local authenticated malicious user with low prEPSS 0.3%