Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-427

CWE-427

Uncontrolled Search Path Element

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.

1,168 vulnerabilities with CWE-427

CVE-2024-39833 MEDIUM

Intel(R) QAT <2.3.0 - Privilege Escalation

CVE-2024-31073 MEDIUM

Intel(R) oneAPI Level Zero - Privilege Escalation

CVE-2024-12530 HIGH

OpenText Secure Content Manager <23.4 - Code Injection

CVE-2024-11859 HIGH

ESET NOD32 Antivirus < 18.0.12.0 - DLL Search Order Hijacking

CVE-2024-10930 HIGH

Carrier Block Load - Uncontrolled Search Path Element

CVE-2024-55898 HIGH

IBM i 7.2-7.5 - Privilege Escalation via Unqualified Library Call

CVE-2024-57964 HIGH

HVAC Energy Saving Program - Info Disclosure/Code Injection

CVE-2024-57963 HIGH

USB-CONVERTERCABLE DRIVER - Info Disclosure/Code Injection

CVE-2024-47006 MEDIUM

Intel(R) RealSense D400 Series UWP Driver - Privilege Escalation

CVE-2024-42492 MEDIUM

Intel(R) Server M50FCP <R01.02.0002 - Privilege Escalation

CVE-2024-42405 MEDIUM

Intel(R) Quartus(R) Prime <23.1.1 - Privilege Escalation

CVE-2024-39813 MEDIUM

EPCT <1.42.8.0 - Privilege Escalation

CVE-2024-39372 MEDIUM

Intel(R) XTU <7.14.2.14 - Privilege Escalation

CVE-2024-39365 MEDIUM

Intel(R) oneAPI DPC++/C++ Compiler <2024.2 - Privilege Escalation

CVE-2024-39284 MEDIUM

Intel Advisor < 2024.2 - Authenticated Privilege Escalation via Uncontrolled Search Path

CVE-2024-36291 MEDIUM

Intel(R) Chipset Software Installation Utility <10.1.19867.8574 - P...

CVE-2024-36283 MEDIUM

Intel(R) Thread Director Visualizer <1.0.1 - Privilege Escalation

CVE-2024-36280 MEDIUM

Intel(R) High Level Synthesis Compiler <24.2 - Privilege Escalation

CVE-2024-32938 MEDIUM

Intel(R) MPI Library <2021.13 - Privilege Escalation

CVE-2024-29223 MEDIUM

Intel(R) QuickAssist Technology <2.2.0 - Privilege Escalation

CVE-2024-24852 MEDIUM

Intel(R) Ethernet Adapter Complete Driver Pack <29.1 - Privilege Es...

CVE-2024-21830 MEDIUM

Intel(R) VPL <2023.4.0 - Privilege Escalation

CVE-2024-53977 MEDIUM

ModelSim Questa < V2025.1 - Code Injection

CVE-2024-48091 HIGH

Tally Prime Edit Log <2.1 - Code Injection

CVE-2024-57426 HIGH

NetMod VPN Client <5.3.1 - Code Injection

Previous Page 13 of 47 Next

Details

Vulnerabilities 1,168

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy