Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-427 (对搜索路径元素未加控制) — Vulnerability Class 538

538 vulnerabilities classified as CWE-427 (对搜索路径元素未加控制). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-5463 XINJE XDPPro cfgmgr32.dll uncontrolled search path — XDPPro 7.8 High2023-10-09
CVE-2023-45248 Acronis Agent 代码问题漏洞 — Acronis Cyber Protect Cloud Agent 7.8 -2023-10-09
CVE-2022-4956 Caphyon Advanced Installer WinSxS DLL uncontrolled search path — Advanced Installer 7.8 High2023-09-30
CVE-2023-39374 ForeScout NAC SecureConnector – CWE-427: Uncontrolled Search Path Element — NAC SecureConnector 7.8 High2023-09-03
CVE-2023-3078 Lenovo Universal Device Client 代码问题漏洞 — Universal Device Client (UDC) 7.8 High2023-08-17
CVE-2021-41544 Siemens Software Center 代码问题漏洞 — Siemens Software Center 7.8 High2023-08-08
CVE-2023-37490 Binary hijack in SAP BusinessObjects Business Intelligence (Installer) — SAP BusinessObjects Business Intelligence (Installer) 7.6 High2023-08-08
CVE-2023-3662 CODESYS: Vulnerability in CODESYS Development System allows for execution of binaries — CODESYS Development System 7.3 High2023-08-03
CVE-2022-43703 Incomplete verification of installation file signature — Arm Compiler 5 (AC5), Arm Compiler for Embedded 6 (AC6), Fast Models (FM), Arm Compiler for Embedded FuSA (ACEF), Arm Development Studio (ADS), Arm Forge (AF), Arm Mobile Studio (AMS), DS-5 Development Studio, Fast Models (FM), GNU Toolchain (GT), Keil MDK (KMDK), Mbed Studio (MS) 7.1 -2023-07-27
CVE-2023-0142 Synology DiskStation Manager 代码问题漏洞 — DiskStation Manager (DSM) 6.5 Medium2023-06-13
CVE-2023-0976 Trellix Agent 代码问题漏洞 — Trellix Agent 6.3 Medium2023-06-07
CVE-2023-3091 Captura CRYPTBASE.dll uncontrolled search path — Captura 7.0 High2023-06-03
CVE-2023-28080 Dell PowerPath Management Appliance 代码问题漏洞 — PowerPath Windows 6.7 Medium2023-05-30
CVE-2023-2355 Acronis Snap Deploy 代码问题漏洞 — Acronis Snap Deploy 7.3 -2023-04-27
CVE-2023-29012 Git CMD erroneously executes `doskey.exe` in the current directory, if it exists — git 7.3 High2023-04-25
CVE-2023-29011 Git for Windows's config file of `connect.exe` is susceptible to malicious placing — git 7.6 High2023-04-25
CVE-2022-34755 Schneider Electric Easergy Builder 代码问题漏洞 — Easergy Builder Installer 6.3 Medium2023-04-18
CVE-2023-28140 Executable Hijacking — Cloud Agent 6.7 Medium2023-04-18
CVE-2023-29187 DLL Hijacking vulnerability in SapSetup (Software Installation Program) — SapSetup (Software Installation Program) 6.7 Medium2023-04-11
CVE-2023-1745 KMPlayer SHFOLDER.dll uncontrolled search path — KMPlayer 5.3 Medium2023-03-30
CVE-2023-0213 Local Elevation of Privilege in M-Files — M-Files 8.8 High2023-03-29
CVE-2022-28686 AVEVA Edge 代码问题漏洞 — Edge 7.8 -2023-03-29
CVE-2022-28687 AVEVA Edge 代码问题漏洞 — Edge 7.8 -2023-03-29
CVE-2022-28688 AVEVA Edge 代码问题漏洞 — Edge 7.8 -2023-03-29
CVE-2023-28596 Local Privilege Escalation in Zoom for macOS Installers — Zoom Client for Meetings for IT Admin macOS installers 7.8 High2023-03-27
CVE-2022-43440 Privilege escalation via manipulated unixcat executable — Checkmk 8.8 High2023-02-09
CVE-2022-31611 NVIDIA GeForce Experience 代码问题漏洞 — GeForce Experience 6.8 Medium2023-02-07
CVE-2023-22358 BIG-IP Edge Client for Windows vulnerability — APM Clients 7.8 High2023-02-01
CVE-2023-22283 BIG-IP Edge Client for Windows vulnerability — APM Clients 6.5 Medium2023-02-01
CVE-2022-34396 Dell OpenManage Server Administrator 代码问题漏洞 — OpenManage Server Administrator (OMSA) 7.0 High2023-02-01

Vulnerabilities classified as CWE-427 (对搜索路径元素未加控制) represent 538 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.