The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.
1,171 vulnerabilities with CWE-427
CVE-2023-28388
MEDIUM
Intel Chipset Device Software < 10.1.19444.8378 - Authenticated Privilege Escalation via Uncontrolled Search Path
CVSS 6.7
CVE-2023-27513
MEDIUM
Intel Server Information Retrieval Utility < 16.0.9 - Authenticated Privilege Escalation via Uncontrolled Search Path
CVSS 6.7
CVE-2023-4632
HIGH
Lenovo System Update - Privilege Escalation
CVSS 7.8
CVE-2023-47113
HIGH
BleachBit < 4.4.2 - Unauthenticated DLL Hijacking via c:\DLLs
CVSS 7.3
CVE-2023-0898
MEDIUM
GE MiCOM S1 Agile - Uncontrolled Search Path Element
CVSS 5.3
CVE-2023-31027
HIGH
NVIDIA GPU Display Driver - Privilege Escalation
CVSS 8.2
CVE-2023-31016
HIGH
NVIDIA Virtual GPU < 13.9 - Uncontrolled Search Path Element
CVSS 7.3
CVE-2023-44220
HIGH
SonicWall NetExtender < 10.2.336 - DLL Search Order Hijacking in Startup Component
CVSS 7.3
CVE-2023-4936
MEDIUM
Synaptics DisplayLink < 11.2 - DLL Sideloading During Installation
CVSS 5.5
CVE-2023-5463
HIGH
XINJE XDPPro <= 3.7.17a - Uncontrolled Search Path in cfgmgr32.dll
CVSS 7.8
CVE-2023-45248
HIGH
Acronis Agent < c23.10 - Local Privilege Escalation via DLL Hijacking
CVSS 7.3
CVE-2023-35897
HIGH
IBM Spectrum Protect Client & Storage Protect - Local RCE
CVSS 8.4
CVE-2023-41929
HIGH
Samsung Memory Card & UFD Authentication Utility PC Software < 1.0.1 - DLL Hijacking
CVSS 7.3
CVE-2023-39374
HIGH
ForeScout NAC SecureConnector 11.2 - Uncontrolled Search Path Element
CVSS 7.8
CVE-2023-40596
HIGH
Splunk Enterprise <8.2.12-9.1.1 - Privilege Escalation
CVSS 7.0
CVE-2023-3252
MEDIUM
Nessus < 10.6.0 - Authenticated Arbitrary File Write via Logging Variables
CVSS 6.8
CVE-2023-40352
HIGH
McAfee Safe Connect < 2.16.1.126 - DLL Hijacking via Uncontrolled Search Path
CVSS 7.2
CVE-2023-3078
HIGH
Lenovo Universal Device Client < 23.4 - Uncontrolled Search Path Element
CVSS 7.8
CVE-2023-34355
MEDIUM
Intel Integrated BMC Video Driver < 1.13.4 (Linux) / < 3.0 (Windows) - Privilege Escalation via Uncontrolled Search Path
CVSS 6.7
CVE-2023-29151
MEDIUM
Intel(R) PSR SDK <1.0.0.20 - Privilege Escalation
CVSS 6.7
CVE-2023-28823
MEDIUM
Intel oneAPI Toolkit <4.3.1.493 - Privilege Escalation
CVSS 6.7
CVE-2023-28405
MEDIUM
Intel Distribution of OpenVINO Toolkit < 2022.3.0 - Authenticated Privilege Escalation via Uncontrolled Search Path
CVSS 6.7
CVE-2023-28380
HIGH
Intel AI Hackathon < 2.0.0 - Unauthenticated Privilege Escalation via Uncontrolled Search Path
CVSS 8.8
CVE-2023-25944
MEDIUM
Intel VCUST Tool < 2023-02-03 - Authenticated Privilege Escalation via Uncontrolled Search Path
CVSS 6.7
CVE-2023-25182
MEDIUM
Intel Unite Client for Mac < 4.2.11 - Authenticated Privilege Escalation via Uncontrolled Search Path
CVSS 4.2
Details
Vulnerabilities
1,171