Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-427 (对搜索路径元素未加控制) — Vulnerability Class 539

539 vulnerabilities classified as CWE-427 (对搜索路径元素未加控制). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2020-24420 Uncontrolled Search Path Element in Adobe Photoshop for Windows — Photoshop 7.0 High2020-10-21
CVE-2020-24419 Uncontrolled Search Path Element in Adobe After Effects for Windows — After Effects 7.0 High2020-10-21
CVE-2020-24425 Privilege escalation vulnerability in Dreamweaver version 20.2 — Dreamweaver 7.5 High2020-10-21
CVE-2020-24422 Uncontrolled Search Path in Creative Cloud Desktop Application — Creative Cloud (desktop component) 7.0 High2020-10-21
CVE-2020-8345 Lenovo Vantage 代码问题漏洞 — Vantage HardwareScan Plugin 7.3 High2020-10-14
CVE-2020-3535 Cisco Webex Teams Client for Windows DLL Hijacking Vulnerability — Cisco Webex Teams 7.8 High2020-10-08
CVE-2020-6654 DLL Hijacking — 9000x Programming and Configuration Software 7.8 High2020-09-30
CVE-2020-7358 Code Injection in Rapid7 AppSpider Pro Installer — AppSpider 5.8 Medium2020-09-18
CVE-2020-7312 DLL Search Order Hijacking in MA for Windows — MA for Windows 7.8 High2020-09-10
CVE-2019-3881 Bundler 代码问题漏洞 — rubygem-bundler 7.8 -2020-09-04
CVE-2020-5419 RabbitMQ arbitrary code execution using local binary planting — RabbitMQ 6.7 -2020-08-31
CVE-2020-3433 Cisco AnyConnect Secure Mobility Client for Windows DLL Hijacking Vulnerability — Cisco AnyConnect Secure Mobility Client 7.8 High2020-08-17
CVE-2020-7360 Philips SmartControl DLL Hijacking — SmartControl 7.4 High2020-08-13
CVE-2020-13177 Teradici PCoIP Standard Agent和Graphics Agent 代码问题漏洞 — - PCoIP Standard Agent for Windows - PCoIP Graphics Agent for Windows 7.8 -2020-08-11
CVE-2020-10610 多款OSIsoft产品代码问题漏洞 — OSIsoft PI System multiple products and versions 7.8 -2020-07-24
CVE-2020-7585 多款Siemens SIMATIC 产品代码问题漏洞 — SIMATIC PCS 7 V8.2 and earlier 7.3 -2020-06-10
CVE-2019-3613 DLL search order hijacking in MA — McAfee Agent (MA) 5.9 Medium2020-06-10
CVE-2020-5357 Dell Dock Firmware Update Utilities 代码问题漏洞 — CPG BIOS 7.1 High2020-05-28
CVE-2020-10616 Opto 22 SoftPAC Project 代码问题漏洞 — Opto 22 SoftPAC Project 8.8 -2020-05-14
CVE-2020-10626 Fazecast jSerialComm 代码问题漏洞 — Fazecast jSerialComm, Version 2.2.2 and prior 7.8 -2020-05-14
CVE-2020-6244 SAP Business Client 代码问题漏洞 — SAP Business Client 7.8 -2020-05-12
CVE-2020-8895 DLL Hijacking in Google Earth Pro Windows installer — Earth Pro 7.8 High2020-04-21
CVE-2020-7474 Schneider Electric ProSoft Configurator 代码问题漏洞 — ProSoft Configurator v1.002 and prior, for the PMEPXM0100 (H) module 7.8 -2020-03-23
CVE-2020-5324 多款 Dell 产品输入验证错误漏洞 — Dell Client Consumer and Commercial Platforms 7.1 High2020-02-21
CVE-2020-3153 Cisco AnyConnect Secure Mobility Client for Windows Uncontrolled Search Path Vulnerability — Cisco AnyConnect Secure Mobility Client 8.4 -2020-02-19
CVE-2019-6858 Schneider Electric MSX Configurator 代码问题漏洞 — MSX Configurator (Software Version prior to V1.0.8.1) 7.8 -2020-01-22
CVE-2019-18575 Dell Command Configure 代码问题漏洞 — Dell Command Configure (DCC) 7.8 -2019-12-06
CVE-2019-3750 Dell Command Update 后置链接漏洞 — Dell Command Update (DCU) 5.5 -2019-12-03
CVE-2019-3749 Dell Command Update 后置链接漏洞 — Dell Command Update (DCU) 5.5 -2019-12-03
CVE-2019-16001 Cisco Webex Teams for Windows DLL Hijacking Vulnerability — Cisco Webex Teams 6.6 -2019-11-26

Vulnerabilities classified as CWE-427 (对搜索路径元素未加控制) represent 539 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.