Falhas do tipo CWE-427

842 resultados
CVE-2025-9844HIGHUncontrolled Search Path Element vulnerability in Salesforce Salesforce CLI on Windows allows Replace Trusted Executable.This issue affects EPSS 0.4%CVE-2021-22665Rockwell Automation DriveTools SP v5.13 and below and Drives AOP v4.12 and below both contain a vulnerability that a local attacker with limEPSS 0.4%CVE-2020-7585A vulnerability has been identified in SIMATIC PCS 7 V8.2 and earlier (All versions), SIMATIC PCS 7 V9.0 (All versions < V9.0 SP3), SIMATIC EPSS 0.4%CVE-2025-66476HIGHVim for Windows Uncontrolled Search Path Element Remote Code Execution VulnerabilityEPSS 0.4%CVE-2020-7474A CWE-427: Uncontrolled Search Path Element vulnerability exists in ProSoft Configurator (v1.002 and prior), for the PMEPXM0100 (H) module, EPSS 0.4%CVE-2025-15558HIGHDocker Desktop Docker Plugins Uncontrolled Search Path Element Local Privilege Escalation VulnerabilityEPSS 0.4%CVE-2023-30237HIGHCyberGhostVPN Windows Client before v8.3.10.10015 was discovered to contain a DLL injection vulnerability via the component Dashboard.exe.EPSS 0.4%CVE-2024-41739HIGHIBM Cognos Dashboards on Cloud Pak for Data privilege escalationEPSS 0.4%CVE-2020-25182MEDIUMRockwell Automation ISaGRAF5 Runtime Uncontrolled Search Path ElementEPSS 0.4%CVE-2025-49144HIGHNotepad++ Privilege Escalation in Installer via Uncontrolled Executable Search PathEPSS 0.4%CVE-2020-8345HIGHA DLL search path vulnerability was reported in the Lenovo HardwareScan Plugin for the Lenovo Vantage hardware scan feature prior to versionEPSS 0.4%CVE-2019-6564GE Communicator, all versions prior to 4.0.517, allows a non-administrative user to place malicious files within the installer file directorEPSS 0.4%CVE-2025-25003HIGHVisual Studio Elevation of Privilege VulnerabilityEPSS 0.4%CVE-2025-24998HIGHVisual Studio Elevation of Privilege VulnerabilityEPSS 0.4%CVE-2024-30376HIGHFamatech Advanced IP Scanner Uncontrolled Search Path Element Local Privilege Escalation VulnerabilityEPSS 0.4%CVE-2026-2360HIGHImproper search_path protection in PostgreSQL Anonymizer 2.5 allows any user to gain superuser privileges in PostgreSQL 14EPSS 0.4%CVE-2020-6654HIGHDLL HijackingEPSS 0.4%CVE-2017-11158Multiple untrusted search path vulnerabilities in the installer in Synology Cloud Station Drive before 4.2.5-4396 on Windows allow local attEPSS 0.4%CVE-2024-2658HIGHLocal privilege escalation in FlexNet PublisherEPSS 0.4%CVE-2026-28456HIGHOpenClaw 2026.1.5 < 2026.2.14 - Arbitrary Code Execution via Unsafe Hook Module Path HandlingEPSS 0.4%