Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-427 (对搜索路径元素未加控制) — Vulnerability Class 538

538 vulnerabilities classified as CWE-427 (对搜索路径元素未加控制). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2019-5631 Rapid7 InsightAppSec Local Privilege Escalation — InsightAppSec 7.8 -2019-08-19
CVE-2019-6825 Schneider Electric ProClima 代码问题漏洞 — ProClima all versions prior to version 8.0.0 7.8 -2019-07-15
CVE-2019-5629 Rapid7 Insight Agent 权限许可和访问控制问题漏洞 — Insight Agent 8.4 -2019-07-13
CVE-2019-6546 GE Communicator 代码问题漏洞 — GE Communicator 7.1 -2019-05-09
CVE-2019-6564 GE Communicator 代码问题漏洞 — GE Communicator 7.3 -2019-05-09
CVE-2019-1794 Cisco Directory Connector Search Order Hijacking Vulnerability — Cisco Directory Connector 3.4 -2019-04-18
CVE-2019-6534 Gemalto Sentinel UltraPro 代码问题漏洞 — Sentinel UltraPro 7.8 -2019-04-11
CVE-2015-1014 Schneider Electric OPC Factory Server 安全漏洞 — OFS v3.5 7.8 -2019-03-25
CVE-2018-15452 Cisco Advanced Malware Protection for Endpoints on Windows DLL Preloading Vulnerability — Cisco AMP for Endpoints 6.7 -2018-11-13
CVE-2018-14812 Fuji Electric Energy Savings Estimator 安全漏洞 — Energy Savings Estimator 7.8 -2018-10-24
CVE-2018-13806 Siemens TD Keypad Designer 安全漏洞 — SIEMENS TD Keypad Designer 7.8 -2018-09-12
CVE-2018-14797 Emerson Electric Deltav DCS 安全漏洞 — DeltaV DCS 7.8 -2018-08-23
CVE-2017-5175 Advantech WebAccess 安全漏洞 — Advantech WebAccess Versions 8.1 and prior. 7.8 -2018-05-09
CVE-2017-14010 iniNet SpiderControl MicroBrowser 安全漏洞 — MicroBrowser 7.8 -2018-04-26
CVE-2018-5457 Vyaire Medical CareFusion Upgrade Utility 安全漏洞 — Vyaire Medical CareFusion Upgrade Utility Vulnerability 7.0 -2018-02-06
CVE-2017-5170 Moxa SoftNVR-IA Live Viewer 安全漏洞 — Moxa SoftNVR-IA Live Viewer 7.2 -2018-01-18
CVE-2017-12313 Cisco Network Academy Packet Tracer software 安全漏洞 — Cisco Network Academy Packet Tracer 6.7 -2017-11-16
CVE-2017-12314 Cisco FindIT Network Discovery Utility 安全漏洞 — Cisco FindIT Discovery Utility 7.8 -2017-11-16
CVE-2017-14020 多款AutomationDirect产品安全漏洞 — CLICK Programming Software (Part Number C0-PGMSW) 7.8 -2017-11-13
CVE-2017-14029 Trihedral VTScada 安全漏洞 — Trihedral Engineering Limited VTScada 7.8 -2017-11-06
CVE-2017-14017 Progea Movicon 安全漏洞 — Progea Movicon SCADA/HMI 7.8 -2017-10-19
CVE-2017-5147 AzeoTech DAQFactory 安全漏洞 — AzeoTech DAQFactory 8.4 -2017-09-09
CVE-2017-11158 Synology Cloud Station Drive for Windows 安装程序漏洞 — Cloud Station Drive 7.8 -2017-08-31
CVE-2017-12717 Advantech WebAccess 安全漏洞 — Advantech WebAccess 7.8 -2017-08-30
CVE-2017-11159 Synology Photo Station Uploader for Windows 安全漏洞 — Photo Station Uploader 7.8 -2017-08-23
CVE-2017-5176 Rockwell Automation Connected Components Workbench 安全漏洞 — Rockwell Automation Connected Components Workbench 7.0 -2017-05-19
CVE-2017-6051 BLF-Tech LLC VisualView HMI 安全漏洞 — BLF-Tech LLC VisualView HMI 7.8 -2017-05-08
CVE-2017-6033 Schneider Electric Interactive Graphical SCADA System Software 安全漏洞 — Schneider Electric Interactive Graphical SCADA System Software 7.8 -2017-04-07

Vulnerabilities classified as CWE-427 (对搜索路径元素未加控制) represent 538 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.