Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-426 (不可信的搜索路径) — Vulnerability Class 193

193 vulnerabilities classified as CWE-426 (不可信的搜索路径). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-43616 Microsoft Office Remote Code Execution Vulnerability — Microsoft Office 2019 7.8 High2024-10-08
CVE-2024-43576 Microsoft Office Remote Code Execution Vulnerability — Microsoft 365 Apps for Enterprise 7.8 High2024-10-08
CVE-2024-8733 HP One Agent Software – Potential Privilege Escalation — HP One Agent Software 8.0 High2024-10-02
CVE-2024-6769 Medium to High Integrity Privilege Escalation in Microsoft Windows — Windows 10 6.7 Medium2024-09-26
CVE-2024-44103 Ivanti Workspace Control 安全漏洞 — Workspace Control 8.8 High2024-09-10
CVE-2024-45281 DLL hijacking vulnerability in SAP BusinessObjects Business Intelligence Platform — SAP BusinessObjects Business Intelligence Platform 5.8 Medium2024-09-10
CVE-2024-6473 DLL Hijacking in Yandex Browser — Browser 7.8AIHighAI2024-09-03
CVE-2024-38305 Dell SupportAssist for Home PCs 代码问题漏洞 — SupportAssist for Home PCs 7.3 High2024-08-21
CVE-2024-42439 Zoom Workplace Desktop App for macOS and Zoom Meeting SDK for macOS - Untrusted Search Path — Zoom Workplace Desktop App for macOS and Zoom Meeting SDK for macOS 6.5 Medium2024-08-14
CVE-2024-41865 Adobe Dimension Untrusted Search Path lead to load malicious DLL swift.dll — Dimension 7.8 High2024-08-14
CVE-2024-6975 Cato Networks Windows SDP Client Local Privilege Escalation via openssl configuration file — SDP Client 8.8 High2024-07-31
CVE-2024-6974 Cato Networks Windows SDP Client Local Privilege Escalation via self-upgrade — SDP Client 8.8 High2024-07-31
CVE-2024-34123 Adobe Premiere Pro arbitrary DLL loading lead to remote code execution — Premiere Pro 7.0 High2024-07-09
CVE-2024-35260 Microsoft Dataverse Remote Code Execution Vulnerability — Microsoft Power Platform 8.0 High2024-06-27
CVE-2024-30100 Microsoft SharePoint Server Remote Code Execution Vulnerability — Microsoft SharePoint Enterprise Server 2016 7.8 High2024-06-11
CVE-2024-28133 PHOENIX CONTACT: Privilege escalation in CHARX Series — CHARX SEC-3000 7.8 High2024-05-14
CVE-2024-32019 ndsudo: local privilege escalation via untrusted search path — netdata 8.8 High2024-04-12
CVE-2024-20693 Windows Kernel Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2024-04-09
CVE-2024-20754 Lightroom Desktop | Untrusted Search Path (CWE-426) — Lightroom Desktop 7.8 High2024-03-18
CVE-2024-21435 Windows OLE Remote Code Execution Vulnerability — Windows 11 version 22H2 8.8 High2024-03-12
CVE-2024-26198 Microsoft Exchange Server Remote Code Execution Vulnerability — Microsoft Exchange Server 2019 Cumulative Update 14 8.8 High2024-03-12
CVE-2024-27303 electron-builder's NSIS installer - execute arbitrary code on the target machine (Windows only) — electron-builder 7.3 High2024-03-06
CVE-2024-25103 Dynamic Link Library (DLL) Hijacking Vulnerability in CDAC AppSamvid Software — AppSamvid Software 6.3 Medium2024-03-06
CVE-2024-24697 Zoom Clients - Untrusted Search Path — Zoom Clients 7.2 High2024-02-13
CVE-2024-24810 WiX is vulnerable to DLL redirection attacks that allow the attacker to escalate privileges — issues 8.3 High2024-02-07
CVE-2021-4435 Yarn: untrusted search path — yarn 7.7 High2024-02-04
CVE-2024-22410 Binary Planting Attack on Windows Platforms in Creditcoin — creditcoin 3.3 Low2024-01-17
CVE-2024-22190 Untrusted search path under some conditions on Windows allows arbitrary code execution — GitPython 7.8 High2024-01-11
CVE-2024-21325 Microsoft Printer Metadata Troubleshooter Tool Remote Code Execution Vulnerability — Microsoft Printer Metadata Troubleshooter Tool 7.8 High2024-01-09
CVE-2023-48670 Dell SupportAssist for Home PCs 安全漏洞 — SupportAssist Client Consumer 7.3 High2023-12-22

Vulnerabilities classified as CWE-426 (不可信的搜索路径) represent 193 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.