Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-428 (未经引用的搜索路径或元素) — Vulnerability Class 295

295 vulnerabilities classified as CWE-428 (未经引用的搜索路径或元素). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-1984 Local Privilege Escalation on Xerox® Desktop Print Experience® v8.5 — Xerox® Desktop Print Experience 5.2 Medium2025-03-12
CVE-2025-0884 Privilege Escalation vulnerability has been discovered in OpenText™ Service Manager. — Service Manager 7.8 -2025-03-12
CVE-2025-24831 Acronis Cyber Protect Cloud Agent 代码问题漏洞 — Acronis Cyber Protect Cloud Agent 7.8 -2025-01-31
CVE-2025-21107 Dell NetWorker 代码问题漏洞 — NetWorker 7.8 High2025-01-30
CVE-2024-9287 Virtual environment (venv) activation scripts don't quote paths — CPython 10.0AICriticalAI2024-10-22
CVE-2024-9325 Intelbras InControl incontrol-service-watchdog.exe unquoted search path — InControl 7.8 High2024-09-29
CVE-2024-8996 Grafana Agent Flow on Windows Unquoted service path — Agent Flow 7.3 High2024-09-25
CVE-2024-8975 Grafana Alloy on Windows Unquoted service path — Alloy 7.3 High2024-09-25
CVE-2024-43457 Windows Setup and Deployment Elevation of Privilege Vulnerability — Windows 11 Version 24H2 7.8 High2024-09-10
CVE-2022-27592 QVR Smart Client — QVR Smart Client 6.7 Medium2024-09-06
CVE-2024-5963 An unquoted executable path exists in Hitachi Device Manager — Hitachi Device Manager 6.7 Medium2024-08-06
CVE-2024-31201 Plug and Track Thermoscan IP 安全漏洞 — Thermoscan IP 6.5 Medium2024-07-31
CVE-2024-5402 Mint Workbench I Unquoted Service Path Enumeration — Mint Workbench I 7.8 High2024-07-15
CVE-2024-6080 Intelbras InControl incontrolWebcam Service unquoted search path — InControl 7.8 High2024-06-17
CVE-2024-2747 Schneider Electric Easergy Studio 代码问题漏洞 — Easergy Studio 7.8 High2024-06-12
CVE-2024-31226 Sunshine's unquoted executable path could lead to hijacked execution flow — Sunshine 4.9 Medium2024-05-16
CVE-2024-3640 Rockwell Automation FactoryTalk® Remote Access™ has Unquoted Executables — FactoryTalk® Remote Access™ 7.2AIHighAI2024-05-16
CVE-2024-4461 Unquoted path or search item vulnerability in SugarSync — SugarSync 7.8 High2024-05-03
CVE-2023-39464 Triangle MicroWorks SCADA Data Gateway GTWWebMonitorService Unquoted Search Path Remote Code Execution Vulnerability — SCADA Data Gateway 8.8 -2024-05-03
CVE-2024-34010 Acronis Cyber Protect 代码问题漏洞 — Acronis Cyber Protect Cloud Agent 7.8AIHighAI2024-04-29
CVE-2024-4031 MEVO WEBCAM APP Windows Unquoted Service Path Vulnerability — MEVO WEBCAM APP 4.4 Medium2024-04-23
CVE-2024-22437 HPE MSA SAN Storage VSS Provider and CAPI Proxy Software, Elevation of Privilege — HPE MSA SAN Storage VSS Provider and CAPI Proxy Software 7.3 High2024-04-15
CVE-2024-1618 Unquoted item or search path vulnerability in Faronics Deep Freeze Server Standard — Deep Freeze Server Standard 7.8 High2024-03-12
CVE-2024-25552 Wiesemann & Theis: Multiple products prone to unquoted search path — Com Redirector PnP 7.8 High2024-03-01
CVE-2024-1201 PanteraSoft HDD Health search path or unquoted item vulnerability — HDD Health 7.8 High2024-02-02
CVE-2020-24682 Automation Studio and PVI Multiple unquoted service path vulnerabilities — Automation Studio 7.2 High2024-02-02
CVE-2023-7043 Unquoted path privilege vulnerability in ESET products for Windows — ESET Endpoint Security 3.3 Low2024-01-31
CVE-2023-6631 Subnet Solutions Inc. PowerSYSTEM Center Unquoted Search Path or Element — PowerSYSTEM Center 7.8 High2024-01-08
CVE-2023-0392 Okta LDAP Agent 安全漏洞 — LDAP Agent 8.8AIHighAI2023-11-08
CVE-2023-42486 Fortect - CWE-428: Unquoted Search Path or Element — Fortect 6.3 Medium2023-09-27

Vulnerabilities classified as CWE-428 (未经引用的搜索路径或元素) represent 295 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.