Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-427 (对搜索路径元素未加控制) — Vulnerability Class 539

539 vulnerabilities classified as CWE-427 (对搜索路径元素未加控制). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-62776 WTW EAGLE 代码问题漏洞 — WTW EAGLE (for Windows) 7.8AIHighAI2025-10-29
CVE-2025-10939 Org.keycloak/keycloak-quarkus-server: unable to restrict access to the admin console — keycloak 3.7 Low2025-10-28
CVE-2025-9164 Multiple DLL Search Order Hijacking Vulnerabilities in Docker Desktop Installer for Windows — Docker Desktop 7.8AIHighAI2025-10-27
CVE-2025-11940 LibreWolf Installer setup.nsi uncontrolled search path — LibreWolf 7.0 High2025-10-19
CVE-2025-10581 Lenovo PC Manager 安全漏洞 — PC Manager 7.8 High2025-10-15
CVE-2025-26861 RSUPPORT RemoteCall Remote Support Program 代码问题漏洞 — RemoteCall Remote Support Program (for Operator) 7.8AIHighAI2025-10-15
CVE-2025-26860 RSUPPORT RemoteCall Remote Support Program 代码问题漏洞 — RemoteCall Remote Support Program (for Operator) 7.8AIHighAI2025-10-15
CVE-2025-26859 RSUPPORT RemoteView PC Application Console 代码问题漏洞 — RemoteView PC Application Console 7.8AIHighAI2025-10-15
CVE-2025-57716 Fortinet FortiClientWindows 代码问题漏洞 — FortiClientWindows 6.0 Medium2025-10-14
CVE-2025-59889 Eaton IPP 安全漏洞 — Eaton IPP software 8.6 High2025-10-14
CVE-2025-23309 NVIDIA Display Driver 代码问题漏洞 — GeForce 8.2 High2025-10-10
CVE-2025-32919 Privilege Escalation in Windows License plugin for Checkmk Windows Agent — Checkmk 7.8AIHighAI2025-10-09
CVE-2025-62185 Ankitects Anki 代码问题漏洞 — Anki 6.7 Medium2025-10-07
CVE-2025-57781 DENSO TEN Drive Recorder Viewer 代码问题漏洞 — Multiple installers of DENSO TEN drive recorder viewer 7.8AIHighAI2025-10-06
CVE-2025-27237 DLL injection in Zabbix Agent and Agent 2 via OpenSSL configuration — Zabbix 7.8AIHighAI2025-10-03
CVE-2025-11223 Panasonic AutoDownloader 安全漏洞 — AutoDownloader 7.8 High2025-10-03
CVE-2025-23355 NVIDIA Nsight Graphics for Windows 代码问题漏洞 — Nsight Graphics 6.7 Medium2025-10-01
CVE-2025-11178 Acronis True Image 代码问题漏洞 — Acronis True Image 7.8AIHighAI2025-09-30
CVE-2025-9267 Seagate Toolkit 安全漏洞 — Toolkit 7.8 -2025-09-26
CVE-2025-9844 Salesforce CLI 安全漏洞 — Salesforce CLI 6.5AIMediumAI2025-09-23
CVE-2025-1131 Asterisk Unsafe Shell Sourcing in safe_asterisk Leads to Local Privilege Escalation — Asterisk 7.8AIHighAI2025-09-23
CVE-2025-9201 Lenovo Browser 安全漏洞 — Browser 7.8 High2025-09-11
CVE-2025-9059 Elevation of Privileges Vulnerability in IT Management Suite — 8.6.IT Management Suite 7.8AIHighAI2025-09-11
CVE-2025-10215 DLL search path hijacking vulnerability — UPDF 7.3AIHighAI2025-09-10
CVE-2025-10214 DLL search path hijacking vulnerability — UPDF 7.3AIHighAI2025-09-10
CVE-2025-10213 DLL search path hijacking vulnerability — UPDF 7.3AIHighAI2025-09-10
CVE-2025-40979 DLL search order hijack in Wave by Grandstream Networks — Wave 7.8AIHighAI2025-09-10
CVE-2025-55671 TkEasyGUI 代码问题漏洞 — TkEasyGUI 7.8AIHighAI2025-09-05
CVE-2025-9330 Foxit PDF Reader Update Service Uncontrolled Search Path Element Local Privilege Escalation Vulnerability — PDF Reader 7.8 -2025-09-02
CVE-2025-8614 NoMachine Uncontrolled Search Path Element Local Privilege Escalation Vulnerability — NoMachine 7.8 -2025-09-02

Vulnerabilities classified as CWE-427 (对搜索路径元素未加控制) represent 539 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.