CWE-426: CWE-426

This Windows kernel vulnerability allows an authenticated attacker to execute arbitrary code with SYSTEM privileges by exploiting a flaw in how the ke...

GitPython versions before 3.1.41 on Windows are vulnerable to untrusted search path attacks when using shell execution for git commands or bash.exe fo...

This vulnerability allows remote code execution through Microsoft's Printer Metadata Troubleshooter Tool. An attacker could exploit this to run arbitr...

This CVE describes a DLL hijacking vulnerability in Fortinet FortiClient for Windows where an attacker can place a malicious OpenSSL engine library in...

This vulnerability in Microsoft Windows Defender allows attackers to elevate privileges on affected systems. An authenticated attacker could exploit t...

This vulnerability allows remote code execution through the Windows User Interface Application Core component. Attackers can exploit this to execute a...

This vulnerability in Zscaler Client Connector for macOS allows local attackers to execute arbitrary code with root privileges by exploiting an unquot...

CVE-2023-4736 is an untrusted search path vulnerability in Vim that allows attackers to execute arbitrary code by placing malicious files in directori...

GitPython on Windows systems can execute malicious git binaries from the current working directory instead of the system PATH, allowing arbitrary comm...

This is an untrusted search path vulnerability in Trend Micro Apex One and Apex One as a Service security agents that allows local attackers to escala...

This vulnerability in Wondershare Edrawmind allows remote attackers to execute arbitrary commands through a malicious WindowsCodescs.dll file. Attacke...

This vulnerability allows remote attackers to execute arbitrary commands on systems running vulnerable versions of Wondershare UniConverter. Attackers...

This vulnerability allows remote attackers to execute arbitrary commands on systems running Wondershare MobileTrans v4.0.2. Attackers can exploit this...

This vulnerability allows remote attackers to execute arbitrary commands on systems running vulnerable versions of Wondershare Recoverit. Attackers ca...

This vulnerability in Wondershare Dr.Fone allows remote attackers to execute arbitrary commands through a malicious drfone_setup_full3360.exe file. It...

This vulnerability in Wondershare PDF Reader allows remote attackers to execute arbitrary commands via a malicious setup file. Users running version 1...

This vulnerability allows remote attackers to execute arbitrary commands on systems running Wondershare Creative Center v1.0.8. Attackers can exploit ...

This vulnerability allows an attacker to gain SYSTEM-level privileges on Windows systems by exploiting a flaw in the Client Server Runtime Subsystem (...

This vulnerability in Acer Care Center allows local attackers to perform DLL hijacking attacks by placing malicious DLL files on the system. When the ...

CVE-2021-26556 is a local privilege escalation vulnerability in Octopus Server where incorrect folder ACLs when installed to custom locations allow un...

This vulnerability allows attackers to escalate privileges by placing a malicious DLL in a specific directory when the Teradici PCoIP Software Client ...

CVE-2021-26807 is a DLL hijacking vulnerability in GOG Galaxy Client version 2.0.28.9 that loads unsigned DLLs from the PATH environment variable. Thi...

CVE-2021-3146 is a local privilege escalation vulnerability in Dolby Audio X2 (DAX2) API service on Windows. It allows local users to execute arbitrar...

This vulnerability allows unauthenticated attackers to execute arbitrary SQL commands during PgBouncer authentication by manipulating the search_path ...

This CVE describes an untrusted search path vulnerability in .NET and Visual Studio that allows attackers to execute arbitrary code by manipulating th...

MongoDB Compass versions before 1.42.1 are vulnerable to local privilege escalation when a malicious file is placed in the C:\node_modules\ directory....

MongoDB Shell (mongosh) versions before 2.3.0 are vulnerable to local privilege escalation when a malicious file is placed in C:\node_modules\. This a...

CVE-2024-23304 is a denial-of-service vulnerability in Cybozu KUNAI for Android that allows remote unauthenticated attackers to crash the application ...

This vulnerability allows local users to escalate privileges to root by exploiting relative library resolution in Apache Hadoop's container-executor b...

A vulnerability in Python 3.11 through 3.11.4 allows path truncation via null bytes in os.path.normpath(). This can bypass security checks that previo...

Kodbox versions 1.2.x through 1.3.7 have a sensitive information leakage vulnerability that allows attackers to access confidential data without authe...

This vulnerability in Microsoft Edge (Chromium-based) allows an attacker to elevate privileges on a compromised system. It affects users running vulne...

Notepad++ versions before 8.9.2 have an unsafe search path vulnerability when launching Windows Explorer. This could allow an attacker to execute mali...

AMD StoreMI software versions before 3.2.0.031 have incorrect default permissions that could allow a local attacker to escalate privileges. This affec...

This DLL hijacking vulnerability in AMD StoreMI allows attackers to place malicious DLLs in directories where the software searches for them, enabling...

An untrusted search path vulnerability in Esri ArcGIS AllSource versions 1.2 and 1.3 allows attackers with local file system write access to place mal...

CVE-2024-50986 is a DLL hijacking vulnerability in Clementine music player version 1.3.1 that allows local attackers to execute arbitrary code by plac...

This CVE describes a DLL hijacking vulnerability in Fortinet FortiClient for Windows where an attacker can place a malicious DLL in a location that Fo...

Dell SupportAssist for Home PCs Installer version 4.0.3 contains a local privilege escalation vulnerability where a low-privileged authenticated attac...

This vulnerability in Zoom Desktop Client for Windows allows an authenticated local user to escalate privileges through an untrusted search path in th...

This vulnerability allows an authenticated user on a Windows system to escalate privileges by exploiting an untrusted search path in Zoom's 32-bit cli...

CVE-2023-36780 is a remote code execution vulnerability in Skype for Business that allows attackers to execute arbitrary code on affected systems by s...

This CVE describes an untrusted search path vulnerability in CleanZoom (Zoom's cleaning utility) that allows a privileged user to escalate privileges ...

CVE-2023-22743 is a DLL side-loading vulnerability in Git for Windows that allows local attackers to execute arbitrary code with elevated privileges. ...

This CVE describes a DLL hijacking vulnerability in Flos Freeware Notepad2 versions 4.2.22 through 4.2.25. Attackers can exploit uncontrolled search p...

This vulnerability in Unidocs ezPDF DRM Reader and ezPDF Reader allows local attackers to exploit an uncontrolled search path issue in SHFOLDER.dll, p...

This vulnerability in Artifex MuPDF on Windows allows local attackers to exploit an uncontrolled search path issue in the get_system_dpi function. Att...

OpenTelemetry-Go SDK versions v1.20.0 through v1.39.0 on macOS/Darwin systems are vulnerable to path hijacking attacks. An attacker with local access ...

This vulnerability allows an unauthorized attacker to execute arbitrary code on a local system by exploiting an untrusted search path in Microsoft Off...

This CVE describes an unquoted search path vulnerability in Muse Group MuseHub's Windows Service updater component. Attackers with local access could ...