Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

CWE-426 (不可信的搜索路径) — Vulnerability Class 193

193 vulnerabilities classified as CWE-426 (不可信的搜索路径). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPaused
CVE-2019-25257 LogicalDOC Enterprise 7.7.4 Authenticated Command Execution via Binary Path Manipulation — LogicalDOC Enterprise 6.5 Medium2025-12-24
CVE-2025-67722 Authenticated amportal search for ‘freepbx_engine’ in non root writeable directories leads to potential privilege escalation — framework 7.8AIHighAI2025-12-16
CVE-2025-64785 Acrobat Reader | Untrusted Search Path (CWE-426) — Acrobat Reader 7.8 High2025-12-09
CVE-2025-12819 Untrusted search path in auth_query connection in PgBouncer — PgBouncer 7.5 High2025-12-03
CVE-2025-49642 Agent builds for AIX vulnerable to library loading hijacking — Zabbix 7.8AIHighAI2025-12-01
CVE-2024-21923 AMD StoreMI 安全漏洞 — AMD StoreMI™ 7.3 High2025-11-23
CVE-2024-21922 AMD StoreMI 安全漏洞 — AMD StoreMI™ 7.3 High2025-11-23
CVE-2025-60718 Windows Administrator Protection Elevation of Privilege Vulnerability — Windows 11 Version 24H2 7.8 High2025-11-11
CVE-2025-43079 Local Privilege Escalation via qagent_uninstall.sh Qualys Cloud Agents — Qualys Agent 6.3 Medium2025-11-10
CVE-2024-14012 Potential Privilege Escalation in Revenera InstallShield 2023 R1 — InstallShield 7.8AIHighAI2025-10-29
CVE-2025-49457 Zoom Clients for Windows - Untrusted Search Path — Zoom Clients for Windows 9.6 Critical2025-08-12
CVE-2025-49456 Zoom Clients for Windows- Race Condition — Zoom Clients for Windows 6.2 Medium2025-08-12
CVE-2025-5039 Privilege Ecalation due to Untrusted Search Path Vulnerability — AutoCAD 7.8 High2025-07-24
CVE-2025-23266 NVIDIA Container Toolkit 代码问题漏洞 — Container Toolkit 9.0 Critical2025-07-17
CVE-2025-0141 GlobalProtect App: Privilege Escalation (PE) Vulnerability — GlobalProtect App 7.8AIHighAI2025-07-09
CVE-2025-49124 Apache Tomcat: exe side-loading via icalcs.exe in Tomcat installer for Windows — Apache Tomcat 7.8AIHighAI2025-06-16
CVE-2025-30399 .NET and Visual Studio Remote Code Execution Vulnerability — .NET 8.0 7.5 High2025-06-13
CVE-2025-5335 Privilege Ecalation due to Untrusted Search Path Vulnerability — Installer 7.8 High2025-06-10
CVE-2024-12168 DLL Hijacking in Yandex Telemost — Telemost 7.8AIHighAI2025-06-02
CVE-2025-2501 Lenovo PC Manager 安全漏洞 — PC Manager 7.8 High2025-05-30
CVE-2025-4971 Broadcom Automic Automation Agent Unix privilege escalation — Automic Automation 7.8AIHighAI2025-05-19
CVE-2025-4802 GNU C Library 安全漏洞 — glibc 7.5AIHighAI2025-05-16
CVE-2024-58250 ppp 安全漏洞 — ppp 9.3 Critical2025-04-22
CVE-2025-27743 Microsoft System Center Elevation of Privilege Vulnerability — System Center Data Protection Manager 2019 7.8 High2025-04-08
CVE-2025-31480 aiven-extras allows PostgreSQL Privilege Escalation through format function — aiven-extras 9.1 Critical2025-04-04
CVE-2025-30407 Acronis Cyber Protect Cloud Agent 代码问题漏洞 — Acronis Cyber Protect Cloud Agent 7.8AIHighAI2025-03-26
CVE-2025-1398 macOS TCC Bypass via Code Injection — Mattermost 3.3 Low2025-03-17
CVE-2025-29903 JetBrains Runtime 代码问题漏洞 — Runtime 5.2 Medium2025-03-12
CVE-2025-27167 Illustrator | Untrusted Search Path (CWE-426) — Illustrator 7.8 High2025-03-11
CVE-2025-1756 MongoDB Shell may be susceptible to local privilege escalation in Windows — mongosh 7.5 High2025-02-27

Vulnerabilities classified as CWE-426 (不可信的搜索路径) represent 193 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.