Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-427 (对搜索路径元素未加控制) — Vulnerability Class 538

538 vulnerabilities classified as CWE-427 (对搜索路径元素未加控制). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-11792 Acronis Cyber Protect Cloud Agent 代码问题漏洞 — Acronis Cyber Protect Cloud Agent 7.8 -2026-03-05
CVE-2026-29610 OpenClaw < 2026.2.14 - Command Hijacking via Unsafe PATH Handling — OpenClaw 8.8 High2026-03-05
CVE-2026-28456 OpenClaw 2026.1.5 < 2026.2.14 - Arbitrary Code Execution via Unsafe Hook Module Path Handling — OpenClaw 7.2 High2026-03-05
CVE-2025-15558 Docker Desktop Docker Plugins Uncontrolled Search Path Element Local Privilege Escalation Vulnerability — Docker CLI 7.3 -2026-03-04
CVE-2026-22270 Dell PowerScale OneFS 代码问题漏洞 — PowerScale OneFS, 6.7 Medium2026-03-04
CVE-2026-24502 Dell Command | Intel vPro Out of Band 代码问题漏洞 — Dell Command | Intel vPro Out of Band 8.8 High2026-03-03
CVE-2026-25191 Digital Arts FinalCode Client 代码问题漏洞 — FinalCode Ver.5 series 7.8AIHighAI2026-02-26
CVE-2026-3091 Synology Presto Client 代码问题漏洞 — Synology Presto Client 6.7 Medium2026-02-24
CVE-2026-21420 Dell Repository Manager 代码问题漏洞 — Repository Manager 7.3 High2026-02-23
CVE-2026-2492 TensorFlow HDF5 Library Uncontrolled Search Path Element Local Privilege Escalation Vulnerability — TensorFlow 7.8AIHighAI2026-02-20
CVE-2026-2040 PDF-XChange Editor TrackerUpdate Uncontrolled Search Path Element Local Privilege Escalation Vulnerability — PDF-XChange Editor 7.8AIHighAI2026-02-20
CVE-2026-26099 Uncontrolled Search Path Element in Owl opds — opds 8.2AIHighAI2026-02-20
CVE-2026-26098 Uncontrolled Search Path Element in Owl opds — opds 8.2AIHighAI2026-02-20
CVE-2026-26097 Uncontrolled Search Path Element in Owl opds — opds 8.2AIHighAI2026-02-20
CVE-2026-26050 RICOH ジョブログ集計/分析ソフトウェア 代码问题漏洞 — ジョブログ集計/分析ソフトウェア RICOHジョブログ集計ツール 7.8AIHighAI2026-02-20
CVE-2026-2538 Flos Freeware Notepad2 Msimg32.dll uncontrolled search path — Notepad2 7.0 High2026-02-16
CVE-2026-2516 Unidocs ezPDF DRM Reader/ezPDF Reader SHFOLDER.dll uncontrolled search path — ezPDF DRM Reader 7.0 High2026-02-15
CVE-2025-54519 AMD Vivado Documentation Navigator installation 安全漏洞 — Vivado™ Documentation Navigator Installation (Windows) 7.3 High2026-02-12
CVE-2026-25676 M-Audio M-Track Duo HD 代码问题漏洞 — M-Track Duo HD 7.8AIHighAI2026-02-12
CVE-2026-2361 Improper search_path protection in PostgreSQL Anonymizer 2.5 allows any user with create privilege to gain superuser privileges — PostgreSQL Anonymizer 8.0 High2026-02-11
CVE-2026-2360 Improper search_path protection in PostgreSQL Anonymizer 2.5 allows any user to gain superuser privileges in PostgreSQL 14 — PostgreSQL Anonymizer 8.0 High2026-02-11
CVE-2025-52541 AMD Vivado 安全漏洞 — Vivado™ Installation (Windows) 7.3 High2026-02-11
CVE-2025-48503 AMD Graphics Driver 安全漏洞 — AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Renoir") 7.8 High2026-02-11
CVE-2025-15569 Artifex MuPDF win_main.c get_system_dpi uncontrolled search path — MuPDF 7.0 High2026-02-10
CVE-2026-25656 Siemens SINEC NMS和Siemens User Management Component 代码问题漏洞 — SINEC NMS 7.8 High2026-02-10
CVE-2026-25655 Siemens SINEC NMS 代码问题漏洞 — SINEC NMS 7.8 High2026-02-10
CVE-2026-23741 ast_coredumper running as root sources ast_debug_tools.conf from /etc/asterisk; potentially leading to privilege escalation — asterisk--2026-02-06
CVE-2026-23740 Asterisk vulnerable to potential privilege escalation — asterisk--2026-02-06
CVE-2026-24694 Roland Cloud Manager 代码问题漏洞 — Roland Cloud Manager 8.4AIHighAI2026-02-03
CVE-2026-25129 PsySH has Local Privilege Escalation via CWD .psysh.php auto-load — psysh 6.7 Medium2026-01-30

Vulnerabilities classified as CWE-427 (对搜索路径元素未加控制) represent 538 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.