CWE-427: CWE-427

This vulnerability in Intel Server Board S2600ST Family BIOS/Firmware Update software allows authenticated local users to escalate privileges by manip...

This vulnerability in Intel MAS software allows authenticated local users to escalate privileges by manipulating the search path. It affects systems r...

This vulnerability allows an authenticated user with local access to potentially escalate privileges through an uncontrolled search path in Intel High...

This vulnerability in Intel IPP software for Windows allows authenticated local users to escalate privileges by manipulating the DLL search path. It a...

This vulnerability in Intel Binary Configuration Tool for Windows allows authenticated local users to escalate privileges by manipulating the DLL sear...

This vulnerability allows authenticated local attackers to execute arbitrary code with elevated privileges by placing a malicious executable in a dire...

This vulnerability in Intel VTune Profiler allows authenticated local users to escalate privileges by manipulating the software's search path. It affe...

This vulnerability in Intel Trace Analyzer and Collector allows authenticated local users to escalate privileges by manipulating the software's search...

This vulnerability in Intel IPP software allows authenticated local users to escalate privileges by exploiting an uncontrolled search path (DLL hijack...

This vulnerability in Intel Simics Package Manager allows authenticated local users to escalate privileges by manipulating the software's search path....

This vulnerability in Intel GPA software allows authenticated local users to escalate privileges by manipulating the software's search path. It affect...

This vulnerability in Intel License Manager for FLEXlm allows authenticated local users to escalate privileges by manipulating the software's search p...

This vulnerability in Intel FPGA SDK for OpenCL allows authenticated local users to escalate privileges by manipulating the search path for DLLs or sh...

This vulnerability in Intel High Level Synthesis Compiler allows authenticated local users to escalate privileges by manipulating the search path. It ...

This vulnerability in Intel Ethernet Adapter Driver Pack allows authenticated local users to escalate privileges by manipulating the software's search...

This vulnerability in Intel VROC software allows authenticated local users to escalate privileges by manipulating the software's search path. It affec...

This vulnerability in Intel Quartus Prime Pro Edition Design Software allows authenticated local users to escalate privileges by exploiting an uncontr...

This vulnerability in Intel oneAPI Math Kernel Library allows authenticated local users to escalate privileges by manipulating the library search path...

This vulnerability in Intel IPP Cryptography software allows authenticated local users to escalate privileges by manipulating the DLL search path. It ...

This vulnerability in Intel Computing Improvement Program software allows authenticated local users to escalate privileges by manipulating the search ...

This vulnerability in Intel Quartus Prime Standard Edition Design software allows authenticated local users to escalate privileges by exploiting an un...

This vulnerability in Intel Processor Diagnostic Tool allows authenticated local users to escalate privileges by exploiting an uncontrolled search pat...

This vulnerability in Intel Quartus Prime Lite Edition software allows authenticated local users to escalate privileges by exploiting an uncontrolled ...

This vulnerability in Intel PCM software allows authenticated local users to escalate privileges by manipulating the software's search path. It affect...

This vulnerability in Intel Processor Identification Utility software allows authenticated local users to escalate privileges by exploiting an uncontr...

This vulnerability in Intel GPA software allows authenticated local users to escalate privileges by manipulating the search path for DLLs or other fil...

This vulnerability in Intel GPA software allows authenticated local users to escalate privileges by manipulating the software's search path. It affect...

This vulnerability in Intel CST software allows authenticated local users to escalate privileges by manipulating the software's search path. It affect...

This vulnerability allows a local attacker to place a malicious DLL in the C:\ProgramData\Synaptics folder, which then gets executed with elevated pri...

An uncontrolled search path vulnerability in the Zoom Workplace Desktop App installer for macOS allows authenticated local users to cause denial of se...

A privilege escalation vulnerability in TeamViewer DEX (formerly 1E DEX) allows local attackers with write access to a PATH directory to execute arbit...

This CVE describes a local privilege escalation vulnerability in TeamViewer DEX (formerly 1E DEX) where attackers with local access during execution c...

HCL Traveler for Microsoft Outlook (HTMO) has a COM hijacking vulnerability that allows attackers to replace legitimate application components with ma...

This vulnerability in Linux::Statm::Tiny for Perl allows untrusted code from the current working directory to be loaded due to insecure module loading...

Mite for Perl before version 0.013000 includes the current working directory ('.') in Perl's @INC module search path, similar to CVE-2016-1238. This a...

This CVE describes a local privilege escalation vulnerability in Acronis Cyber Protect 17 for Windows due to DLL hijacking. Attackers with local acces...

This vulnerability in Whale browser Installer allows attackers to execute malicious DLL files in the user's environment due to improper permission set...

This vulnerability in HP PC audio drivers could allow attackers to escalate privileges on affected systems. It affects HP computers using specific Sou...

Arm Development Studio versions before 2025 contain a DLL hijacking vulnerability (CWE-427) where attackers can place malicious DLLs in directories se...

CVE-2026-26097 is an uncontrolled search path element vulnerability in Owl opds 2.2.0.4 that allows attackers to manipulate configuration file search ...

CVE-2026-26099 is a path traversal vulnerability in Owl opds 2.2.0.4 that allows attackers to manipulate configuration file search paths via crafted n...

This CVE describes a library injection vulnerability in macOS that allows applications to bypass file system protection mechanisms. An attacker could ...

This vulnerability in Mp3tag allows attackers to execute arbitrary code by placing a malicious DLL in a location where the application searches for de...

This vulnerability in Emerson ValveLink products allows attackers to manipulate the search path for resources, potentially leading to execution of mal...

This vulnerability in Asterisk allows local attackers to escalate privileges to root by exploiting insecure temporary file handling in the ast_coredum...

Asterisk's ast_coredumper script runs with root privileges and sources a configuration file that can be modified by the asterisk user. This allows an ...

This CVE describes a DLL preloading vulnerability in Crucial Storage Executive installer versions before 11.08.082025.00. When the installer runs with...

This CVE describes a Search Order Hijacking vulnerability in Yandex Messenger (Telemost) on macOS, where an attacker can place a malicious library in ...

This CVE describes a Search Order Hijacking vulnerability in Yandex Disk for macOS, where an attacker could place malicious files in locations that th...

This vulnerability allows attackers to achieve privilege escalation by planting malicious DLLs in writable service directories. When ABP or AES servic...