Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-427 (对搜索路径元素未加控制) — Vulnerability Class 538

538 vulnerabilities classified as CWE-427 (对搜索路径元素未加控制). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-42171 NSIS <3.12低IL目录权限提升漏洞 — Nullsoft Scriptable Install System 7.8 High2026-04-24
CVE-2026-32172 Microsoft Power Apps Remote Code Execution Vulnerability — Microsoft Power Apps 8.0 High2026-04-23
CVE-2025-10549 DLL Hijacking in EfficientLab Controlio Leads to Local Privilege Escalation — Controlio 7.3AIHighAI2026-04-23
CVE-2026-34488 i-PRO IP Setting Software 代码问题漏洞 — IP Setting Software 7.8AIHighAI2026-04-23
CVE-2026-32679 Japan Media Systems LiveOn Meet Client和Canon Network Camera Plugin 代码问题漏洞 — Downloader5Installer.exe 7.8AIHighAI2026-04-23
CVE-2026-6421 Mobatek MobaXterm Home Edition msimg32.dll uncontrolled search path — MobaXterm Home Edition 7.0 High2026-04-17
CVE-2026-34632 Photoshop Installer | CWE-427: Uncontrolled Search Path Element — Adobe Photoshop Installer 8.2 High2026-04-15
CVE-2026-4134 Lenovo Software Fix 安全漏洞 — Software Fix 7.3 High2026-04-15
CVE-2026-1636 Lenovo Service Bridge 安全漏洞 — Service Bridge 6.7 Medium2026-04-15
CVE-2026-5397 Vulnerability Related to an Uncontrolled Search Path Element in a UPS Management Application — PowerAttendant Standard Edition 7.8 High2026-04-15
CVE-2026-4158 KeePassXC OpenSSL Configuration Uncontrolled Search Path Element Local Privilege Escalation Vulnerability — KeePassXC 7.3AIHighAI2026-04-11
CVE-2026-5055 NoMachine Uncontrolled Search Path Element Local Privilege Escalation Vulnerability — NoMachine 7.8AIHighAI2026-04-11
CVE-2026-28704 EmoCheck 代码问题漏洞 — Emocheck 7.8AIHighAI2026-04-10
CVE-2026-40031 MemProcFS < 5.17 DLL/Shared Library Hijacking — MemProcFS 7.8 High2026-04-08
CVE-2025-14821 Libssh: libssh: insecure default configuration leads to local man-in-the-middle attacks on windows — Red Hat Hardened Images 7.8 High2026-04-07
CVE-2026-27774 Acronis True Image 代码问题漏洞 — Acronis True Image 7.8AIHighAI2026-04-02
CVE-2026-28728 Acronis True Image 代码问题漏洞 — Acronis True Image 7.8AIHighAI2026-04-02
CVE-2026-3775 Foxit PDF Editor/Reader Update Service Uncontrolled Search Path Element Local Privilege Escalation Vulnerability — Foxit PDF Editor 7.8 High2026-04-01
CVE-2026-34054 openssl on Windows built with openssldir set from the build machine (Uncontrolled Search Path Element) — vcpkg 7.8 High2026-03-31
CVE-2026-4962 UltraVNC Service version.dll uncontrolled search path — UltraVNC 7.0 High2026-03-27
CVE-2026-28760 RATOC RAID Monitoring Manager for Windows 代码问题漏洞 — RATOC RAID Monitoring Manager for Windows 7.8AIHighAI2026-03-26
CVE-2026-26306 OM Workspace 代码问题漏洞 — OM Workspace (Windows Edition) 7.8 -2026-03-25
CVE-2026-4546 Flos Freeware Notepad2 TextShaping.dll uncontrolled search path — Notepad2 7.0 High2026-03-22
CVE-2026-4545 Flos Freeware Notepad2 PROPSYS.dll uncontrolled search path — Notepad2 7.0 High2026-03-22
CVE-2026-2713 IBM Trusteer Rapport installer affected by uncontrolled search path element vulnerability — Trusteer Rapport installer 7.4 High2026-03-10
CVE-2026-24317 DLL Hijacking vulnerability in SAP GUI for Windows with active GuiXT — SAP GUI for Windows with active GuiXT 5.0 Medium2026-03-10
CVE-2026-30896 Qsee Client 代码问题漏洞 — Qsee Client 7.8AIHighAI2026-03-09
CVE-2026-3787 UltraVNC Windows Service cryptbase.dll uncontrolled search path — UltraVNC 7.0 High2026-03-08
CVE-2026-28712 Acronis Cyber Protect 代码问题漏洞 — Acronis Cyber Protect 17 7.8 -2026-03-05
CVE-2026-28711 Acronis Cyber Protect 代码问题漏洞 — Acronis Cyber Protect 17 7.8 -2026-03-05

Vulnerabilities classified as CWE-427 (对搜索路径元素未加控制) represent 538 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.