CWE-427

1,133 vulnerabilities with CWE-427

CVE-2025-64995 MEDIUM

Teamviewer Digital Employee Experience - Uncontrolled Search Path

CVSS 6.5

CVE-2025-64994 MEDIUM

Teamviewer Digital Employee Experience - Uncontrolled Search Path

CVSS 6.5

CVE-2025-34424 HIGH

Mailenable < 10.54 - Uncontrolled Search Path

CVSS 7.8

CVE-2025-34423 HIGH

Mailenable < 10.54 - Uncontrolled Search Path

CVSS 7.8

CVE-2025-34422 HIGH

Mailenable < 10.54 - Uncontrolled Search Path

CVSS 7.8

CVE-2025-34421 HIGH

Mailenable < 10.54 - Uncontrolled Search Path

CVSS 7.8

CVE-2025-34420 HIGH

Mailenable < 10.54 - Uncontrolled Search Path

CVSS 7.8

CVE-2025-34419 HIGH

Mailenable < 10.54 - Uncontrolled Search Path

CVSS 7.8

CVE-2025-34418 HIGH

Mailenable < 10.54 - Uncontrolled Search Path

CVSS 7.8

CVE-2025-34417 HIGH

Mailenable < 10.54 - Uncontrolled Search Path

CVSS 7.8

CVE-2025-34416 HIGH

Mailenable < 10.54 - Uncontrolled Search Path

CVSS 7.8

CVE-2025-13152 HIGH

Lenovo One Client - Privilege Escalation

CVSS 7.8

CVE-2025-12046 HIGH

Lenovo App Store/Browser - Privilege Escalation

CVSS 7.8

CVE-2025-65741 CRITICAL

Sublime Text 3 <3208 - Code Injection

CVSS 9.8

CVE-2025-34396 HIGH

Mailenable < 10.54 - Uncontrolled Search Path

CVSS 7.3

CVE-2025-5471 HIGH

Yandex Telemost <2.19.1 - Search Order Hijacking

CVSS 7.8

CVE-2025-5470 HIGH

Yandex Disk <3.2.45.3275 - Search Order Hijacking

CVE-2025-5469 HIGH

Yandex Messenger <2.245 - Search Order Hijacking

CVE-2025-33208 HIGH

NVIDIA TAO - Path Traversal

CVSS 8.8

CVE-2025-66476 HIGH

Vim <9.1.1947 - Command Injection

CVSS 7.8

CVE-2025-11772 MEDIUM

Synaptics < unknown - Code Injection

CVSS 6.6

CVE-2025-64772 HIGH

INZONE Hub <1.0.17.0 - Code Injection

CVSS 7.8

CVE-2025-64695 HIGH

Secuavail Logstare Collector < 2.4.2 - Uncontrolled Search Path

CVSS 7.8

CVE-2025-13051 CRITICAL

ABP <2.0.7.9050 - Authenticated Privilege Escalation

CVE-2025-12852 HIGH

NEC RakurakuMusen Start EX - Code Injection