Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-426 (不可信的搜索路径) — Vulnerability Class 193

193 vulnerabilities classified as CWE-426 (不可信的搜索路径). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-1755 MongoDB Compass may be susceptible to local privilege escalation in Windows — MongoDB Compass 7.5 High2025-02-27
CVE-2025-1068 There is a code injection vulnerability in Esri ArcGIS AllSource — ArcGIS AllSource 7.3 High2025-02-25
CVE-2025-26624 Local Privilege Escalation in Rufus 4.6 and previous versions — rufus 7.8 -2025-02-18
CVE-2025-1353 Kong Insomnia profapi.dll untrusted search path — Insomnia 7.0 High2025-02-16
CVE-2024-3220 Default mimetype known files writeable on Windows — CPython 5.5 -2025-02-14
CVE-2025-24828 Acronis Cyber Protect Cloud Agent 代码问题漏洞 — Acronis Cyber Protect Cloud Agent 7.8 -2025-01-31
CVE-2025-24827 Acronis Cyber Protect Cloud Agent 代码问题漏洞 — Acronis Cyber Protect Cloud Agent 7.8 -2025-01-31
CVE-2025-24829 Acronis Cyber Protect Cloud Agent 代码问题漏洞 — Acronis Cyber Protect Cloud Agent 7.8 -2025-01-31
CVE-2025-24830 Acronis Cyber Protect Cloud Agent 代码问题漏洞 — Acronis Cyber Protect Cloud Agent 7.8 -2025-01-31
CVE-2025-0145 Zoom Workplace Apps for Windows - Untrusted Search Path — Zoom Workplace Apps for Windows 4.6 Medium2025-01-30
CVE-2025-24789 Snowflake JDBC allows an untrusted search path on Windows — snowflake-jdbc 7.8 High2025-01-29
CVE-2025-0733 Postman profapi.dll untrusted search path — Postman 4.5 Medium2025-01-27
CVE-2025-0732 Discord profapi.dll untrusted search path — Discord 4.5 Medium2025-01-27
CVE-2025-0707 Rise Group Rise Mode Temp CPU Startup CRYPTBASE.dll untrusted search path — Rise Mode Temp CPU 7.8 High2025-01-24
CVE-2024-13524 obsproject OBS Studio untrusted search path — OBS Studio 4.5 Medium2025-01-20
CVE-2025-0567 Epic Games Launcher Installer profapi.dll untrusted search path — Launcher 4.5 Medium2025-01-19
CVE-2025-21399 Microsoft Edge (Chromium-based) Update Elevation of Privilege Vulnerability — Microsoft Edge Update Setup 7.4 High2025-01-17
CVE-2020-8094 Untrusted Search Path Vulnerability in Bitdefender Antivirus Free 2020 (VA-8422) — Antivirus Free 2020 7.3 -2025-01-15
CVE-2025-21365 Microsoft Office Remote Code Execution Vulnerability — Microsoft 365 Apps for Enterprise 7.8 High2025-01-14
CVE-2024-13158 Ivanti EPM 安全漏洞 — Endpoint Manager 7.2 High2025-01-14
CVE-2025-0459 libretro RetroArch Startup profapi.dll untrusted search path — RetroArch 5.3 Medium2025-01-14
CVE-2024-53866 pnpm vulnerable to no-script global cache poisoning via overrides / `ignore-scripts` evasion — pnpm 9.8 -2024-12-10
CVE-2024-11454 Untrusted Search Path vulnerability in Autodesk Revit — Revit 7.8 High2024-12-09
CVE-2023-1521 Local Privilege Escalation in sccache — sccache 7.4 -2024-11-26
CVE-2024-49515 Substance3D - Painter | Untrusted Search Path (CWE-426) — Substance3D - Painter 7.8 High2024-11-12
CVE-2024-36507 Fortinet FortiClientWindows 安全漏洞 — FortiClientWindows 6.7 High2024-11-12
CVE-2024-49043 Microsoft.SqlServer.XEvent.Configuration.dll Remote Code Execution Vulnerability — Microsoft SQL Server 2017 (GDR) 7.8 High2024-11-12
CVE-2024-7995 Autodesk VRED Design Privilege Escalation Vulnerability — VRED Design 7.8 High2024-11-05
CVE-2023-32266 Code injection vulnerability found in OpenText Application Lifecycle Management (ALM),Quality Center. — Application Lifecycle Management (ALM),Quality Center 7.3AIHighAI2024-10-16
CVE-2024-47422 Adobe Framemaker | Untrusted Search Path (CWE-426) — Adobe Framemaker 7.8 High2024-10-09

Vulnerabilities classified as CWE-426 (不可信的搜索路径) represent 193 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.