The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.
1,171 vulnerabilities with CWE-427
CVE-2024-34153
MEDIUM
Intel(R) RAID Web Console - Privilege Escalation
CVSS 6.7
CVE-2024-39613
MEDIUM
Mattermost Desktop App <=5.8.0 - Uncontrolled Search Path Element via cmd.exe
CVSS 5.3
CVE-2024-20430
HIGH
Cisco Meraki Systems Manager - Code Injection
CVSS 7.3
CVE-2024-6510
HIGH
AVG Internet Security <24 - Privilege Escalation
CVSS 7.8
CVE-2024-8441
MEDIUM
Ivanti EPM <2022 SU6-2024 September - Privilege Escalation
CVSS 6.7
CVE-2024-44107
HIGH
Ivanti Workspace Control < 10.18.99.0 - Authenticated DLL Hijacking
CVSS 8.8
CVE-2024-45405
MEDIUM
gitoxide gix-path < 0.10.11 - Local Configuration Injection Code Execution
CVSS 6.0
CVE-2024-7834
HIGH
Overwolf < 250.1.1 - Local Privilege Escalation via DLL Hijacking
CVSS 7.8
CVE-2024-34019
HIGH
Acronis Snap Deploy <4569 - Privilege Escalation
CVSS 7.3
CVE-2024-34017
HIGH
Acronis Snap Deploy <4569 - Privilege Escalation
CVSS 7.3
CVE-2024-5929
HIGH
VIPRE Advanced Security - Uncontrolled Search Path Element in Patch Management Agent
CVSS 7.8
CVE-2024-7886
HIGH
Scooter Software Beyond Compare <3.3.5.15075 - Path Traversal
CVSS 7.8
CVE-2024-29015
MEDIUM
Intel oneAPI Base Toolkit and VTune Profiler < 2024.1 - Authenticated Privilege Escalation via Uncontrolled Search Path
CVSS 6.7
CVE-2024-28953
MEDIUM
EMON software < 11.44 - Authenticated Privilege Escalation via Uncontrolled Search Path
CVSS 6.7
CVE-2024-28887
MEDIUM
Intel Integrated Performance Primitives < 2021.11 - Authenticated Privilege Escalation via Uncontrolled Search Path
CVSS 6.7
CVE-2024-28876
MEDIUM
Intel MPI Library <2021.12 & oneAPI HPC Toolkit <2024.1 Privilege Escalation via Uncontrolled Search Path
CVSS 6.7
CVE-2024-28172
MEDIUM
Intel Trace Analyzer and Collector < 2022.1 - Authenticated Privilege Escalation via Uncontrolled Search Path
CVSS 6.7
CVE-2024-28046
MEDIUM
Intel Graphics Performance Analyzers < 2024.1 - Authenticated Privilege Escalation via Uncontrolled Search Path
CVSS 6.7
CVE-2024-26027
MEDIUM
Intel Simics Package Manager < 1.8.3 - Authenticated Privilege Escalation via Uncontrolled Search Path
CVSS 6.7
CVE-2024-24977
MEDIUM
Intel(R) License Manager <11.19.5.0 - Privilege Escalation
CVSS 6.7
CVE-2024-23909
MEDIUM
Intel Field Programmable Gate Array S... - Uncontrolled Search Path
CVSS 6.7
CVE-2024-23907
MEDIUM
Intel High Level Synthesis Compiler < 23.4 - Authenticated Privilege Escalation via Uncontrolled Search Path
CVSS 6.7
CVE-2024-23491
MEDIUM
Intel Distribution for GDB < 2024.0.1 - Authenticated Privilege Escalation via Uncontrolled Search Path
CVSS 6.7
CVE-2024-23489
MEDIUM
Intel Virtual RAID on CPU < 8.6.0.1191 - Authenticated Privilege Escalation via Uncontrolled Search Path
CVSS 6.7
CVE-2024-22376
MEDIUM
Intel(R) Ethernet Adapter Driver Pack <28.3 - Privilege Escalation
CVSS 6.7
Details
Vulnerabilities
1,171