Weaknesses of type CWE-427
842 resultsCVE-2024-9490HIGHUncontrolled search path can lead to DLL hijacking in Silicon Labs IDE installerEPSS 0.2%CVE-2024-9493HIGHUncontrolled search path can lead to DLL hijacking in ToolStick installerEPSS 0.2%CVE-2020-8895HIGHDLL Hijacking in Google Earth Pro Windows installerEPSS 0.2%CVE-2024-9491HIGHUncontrolled search path can lead to DLL hijacking in Configuration Wizard 2 installerEPSS 0.2%CVE-2022-34755MEDIUM
A CWE-427 - Uncontrolled Search Path Element vulnerability exists that could allow an attacker
with a local privileged account to place a sEPSS 0.2%CVE-2024-9492HIGHUncontrolled search path can lead to DLL hijacking in Flash Programming Utility installerEPSS 0.2%CVE-2024-28099HIGHVT STUDIO Ver.8.32 and earlier contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. As aEPSS 0.2%CVE-2024-9495HIGHUncontrolled search path can lead to DLL hijacking in CP210x VCP Windows installerEPSS 0.2%CVE-2024-9494HIGHUncontrolled search path can lead to DLL hijacking in CP210 VCP Win 2k installerEPSS 0.2%CVE-2023-39374HIGH ForeScout NAC SecureConnector – CWE-427: Uncontrolled Search Path ElementEPSS 0.2%CVE-2024-39813MEDIUMUncontrolled search path for some EPCT software before version 1.42.8.0 may allow an authenticated user to potentially enable escalation of EPSS 0.2%CVE-2025-35471HIGHconda-forge openssl-feedstock writable OPENSSLDIREPSS 0.2%CVE-2024-32938MEDIUMUncontrolled search path for some Intel(R) MPI Library for Windows software before version 2021.13 may allow an authenticated user to potentEPSS 0.2%CVE-2024-36291MEDIUMUncontrolled search path for some Intel(R) Chipset Software Installation Utility before version 10.1.19867.8574 may allow an authenticated uEPSS 0.2%CVE-2024-39372MEDIUMUncontrolled search path for the Intel(R) XTU software for Windows before version 7.14.2.14 may allow an authenticated user to potentially eEPSS 0.2%CVE-2024-39284MEDIUMUncontrolled search path for some Intel(R) Advisor software before version 2024.2 may allow an authenticated user to potentially enable escaEPSS 0.2%CVE-2024-21774MEDIUMUncontrolled search path in some Intel(R) Processor Identification Utility software before versions 6.10.34.1129, 7.1.6 may allow an authentEPSS 0.2%CVE-2024-21830MEDIUMUncontrolled search path in some Intel(R) VPL software before version 2023.4.0 may allow an authenticated user to potentially enable escalatEPSS 0.2%CVE-2024-39365MEDIUMUncontrolled search path for the FPGA Support Package for the Intel(R) oneAPI DPC++/C++ Compiler software for Windows before version 2024.2 EPSS 0.2%CVE-2024-24852MEDIUMUncontrolled search path in some Intel(R) Ethernet Adapter Complete Driver Pack install before versions 29.1 may allow an authenticated userEPSS 0.2%