Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-427

CWE-427

Uncontrolled Search Path Element

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.

1,168 vulnerabilities with CWE-427

CVE-2026-5064 HIGH

HP One Agent Software – Security Update

CVE-2026-50100 HIGH

Ricoh Company, Ltd. Multiple Printer Drivers - Uncontrolled Search Path Element

CVE-2026-11967 HIGH

Arbitrary code execution in MobaXterm Personal Edition (Portable)

CVE-2026-11879 HIGH

Arbitrary code execution in MobaXterm Personal Edition (Portable)

CVE-2026-53813 HIGH

OpenClaw < 2026.4.25 - Arbitrary Artifact Loading via Fake Package Root Resolution

CVE-2026-7870 HIGH

IBM i 7.3-7.6 - Admin Privilege Escalation via Unqualified Library Call

CVE-2026-10847 HIGH

Check Point Identity Agent < 81.087.0000 - Local Privilege Escalation

CVE-2026-8637 HIGH

Lenovo LanSchool Classic < 9.3.1.30 - Uncontrolled Search Path Element

CVE-2026-47937 HIGH

Acrobat Reader | Uncontrolled Search Path Element (CWE-427)

CVE-2026-41567 HIGH

Docker: `PUT /containers/{id}/archive` executes container binary on the host

CVE-2026-50033 HIGH

Acronis DeviceLock Dlp < 9.0.15051.93227 - Uncontrolled Search Path Element

CVE-2026-44682 HIGH

Acronis DeviceLock Dlp < 9.0.15051.93227 - Uncontrolled Search Path Element

CVE-2026-44609 HIGH

Acronis DeviceLock Dlp < 9.0.15051.93227 - Uncontrolled Search Path Element

CVE-2026-36574 HIGH

Wassimulator CactusViewer 2.3.0 - DLL Hijacking

CVE-2026-44358 HIGH

Espressif Shared GitHub DangerJS: Untrusted Search Path in DangerJS Action Entrypoint

CVE-2026-47274 MEDIUM

pam_usb: Uncontrolled search path in pam_usb tools allows privilege escalation via PATH manipulation

CVE-2026-32323 HIGH

Mullvad VPN for macOS: Local Privilege Escalation via unverified bundle path in installer

CVE-2026-47092 HIGH

Claude HUD 0.0.12 Arbitrary Command Execution via COMSPEC Environment Variable

CVE-2026-7373 HIGH

Metasploit Pro on Windows: Local Privilege Escalation via OpenSSL Configuration File Loading

CVE-2026-44612 HIGH

Bytello Share (Windows Edition) Installer Executable - Uncontrolled Search Path Element

CVE-2026-20772 MEDIUM

Intel(R) Connectivity Performance Suite Software Installers - Uncontrolled Search Path Element

CVE-2026-45004 HIGH

OpenClaw < 2026.4.23 - Arbitrary Code Execution via setup-api.js in Current Working Directory

CVE-2026-44406 MEDIUM

ZTE uSmartView Service Agent - DLL Hijacking Privilege Escalation

CVE-2026-40004 MEDIUM

ZTE uSmartView openssl.cnf - Local Privilege Escalation

CVE-2026-21661 HIGH

AC2000 Uncontrolled Search Path Element

Page 1 of 47 Next

Details

Vulnerabilities 1,168

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy