Fallos del tipo CWE-427
842 resultadosCVE-2024-9490HIGHUncontrolled search path can lead to DLL hijacking in Silicon Labs IDE installerEPSS 0.2%CVE-2024-9491HIGHUncontrolled search path can lead to DLL hijacking in Configuration Wizard 2 installerEPSS 0.2%CVE-2024-29734HIGHUncontrolled search path element issue exists in SonicDICOM Media Viewer 2.3.2 and earlier, which may lead to insecurely loading Dynamic LinEPSS 0.2%CVE-2024-28131HIGHEasyRange Ver 1.41 contains an issue with the executable file search path when displaying an extracted file on Explorer, which may lead to lEPSS 0.2%CVE-2024-9492HIGHUncontrolled search path can lead to DLL hijacking in Flash Programming Utility installerEPSS 0.2%CVE-2024-28099HIGHVT STUDIO Ver.8.32 and earlier contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. As aEPSS 0.2%CVE-2023-39374HIGH ForeScout NAC SecureConnector – CWE-427: Uncontrolled Search Path ElementEPSS 0.2%CVE-2024-9494HIGHUncontrolled search path can lead to DLL hijacking in CP210 VCP Win 2k installerEPSS 0.2%CVE-2024-9493HIGHUncontrolled search path can lead to DLL hijacking in ToolStick installerEPSS 0.2%CVE-2022-34755MEDIUM
A CWE-427 - Uncontrolled Search Path Element vulnerability exists that could allow an attacker
with a local privileged account to place a sEPSS 0.2%CVE-2024-36283MEDIUMUncontrolled search path for the Intel(R) Thread Director Visualizer software before version 1.0.1 may allow an authenticated user to potentEPSS 0.2%CVE-2024-39365MEDIUMUncontrolled search path for the FPGA Support Package for the Intel(R) oneAPI DPC++/C++ Compiler software for Windows before version 2024.2 EPSS 0.2%CVE-2024-39372MEDIUMUncontrolled search path for the Intel(R) XTU software for Windows before version 7.14.2.14 may allow an authenticated user to potentially eEPSS 0.2%CVE-2024-32938MEDIUMUncontrolled search path for some Intel(R) MPI Library for Windows software before version 2021.13 may allow an authenticated user to potentEPSS 0.2%CVE-2024-24852MEDIUMUncontrolled search path in some Intel(R) Ethernet Adapter Complete Driver Pack install before versions 29.1 may allow an authenticated userEPSS 0.2%CVE-2026-25676HIGHThe installer of M-Track Duo HD version 1.0.0 contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link EPSS 0.2%CVE-2024-39813MEDIUMUncontrolled search path for some EPCT software before version 1.42.8.0 may allow an authenticated user to potentially enable escalation of EPSS 0.2%CVE-2024-21830MEDIUMUncontrolled search path in some Intel(R) VPL software before version 2023.4.0 may allow an authenticated user to potentially enable escalatEPSS 0.2%CVE-2024-39284MEDIUMUncontrolled search path for some Intel(R) Advisor software before version 2024.2 may allow an authenticated user to potentially enable escaEPSS 0.2%CVE-2024-21774MEDIUMUncontrolled search path in some Intel(R) Processor Identification Utility software before versions 6.10.34.1129, 7.1.6 may allow an authentEPSS 0.2%