Search Results (2568 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2024-28887 1 Intel 3 Integrated Performance Primitives, Ipp Software, Oneapi Base Toolkit 2024-09-12 6.7 Medium
Uncontrolled search path in some Intel(R) IPP software before version 2021.11 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2024-24977 1 Intel 2 License Manager For Flexim, License Manager For Flexlm Product Software 2024-09-12 6.7 Medium
Uncontrolled search path for some Intel(R) License Manager for FLEXlm product software before version 11.19.5.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2024-23489 1 Intel 2 Virtual Raid On Cpu, Vroc Software 2024-09-12 6.7 Medium
Uncontrolled search path for some Intel(R) VROC software before version 8.6.0.1191 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2024-34019 1 Acronis 1 Snap Deploy 2024-09-12 7.3 High
Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Snap Deploy (Windows) before build 4569.
CVE-2024-34017 1 Acronis 1 Snap Deploy 2024-09-12 7.3 High
Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Snap Deploy (Windows) before build 4569.
CVE-2024-7325 1 Iobit 1 Driver Booster 2024-09-11 7.8 High
A vulnerability was found in IObit Driver Booster 11.0.0.0. It has been rated as critical. Affected by this issue is some unknown functionality in the library VCL120.BPL of the component BPL Handler. The manipulation leads to uncontrolled search path. Attacking locally is a requirement. The identifier of this vulnerability is VDB-273248. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVE-2024-23907 1 Intel 4 High Level Synthesis Compiler, High Level Synthesis Compiler Software, Oneapi Dpc\+\+\/c\+\+ Compiler and 1 more 2024-09-06 6.7 Medium
Uncontrolled search path in some Intel(R) High Level Synthesis Compiler software before version 23.4 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2024-23909 1 Intel 1 Field Programmable Gate Array Software Development Kit For Opencl 2024-09-06 6.7 Medium
Uncontrolled search path in some Intel(R) FPGA SDK for OpenCL(TM) software technology may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2024-26027 1 Intel 1 Simics Package Manager 2024-09-06 6.7 Medium
Uncontrolled search path for some Intel(R) Simics Package Manager software before version 1.8.3 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2024-28046 1 Intel 2 Graphics Performance Analyzer, Graphics Performance Analyzers 2024-09-06 6.7 Medium
Uncontrolled search path in some Intel(R) GPA software before version 2024.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2024-28172 1 Intel 2 Oneapi Hpc Toolkit, Trace Analyzer And Collector 2024-09-06 6.7 Medium
Uncontrolled search path for some Intel(R) Trace Analyzer and Collector software before version 2022.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2024-28876 1 Intel 2 Mpi Library, Oneapi Hpc Toolkit 2024-09-06 6.7 Medium
Uncontrolled search path for some Intel(R) MPI Library software before version 2021.12 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2024-7834 1 Overwolf 1 Overwolf 2024-09-05 7.8 High
A local privilege escalation is caused by Overwolf loading and executing certain dynamic link library files from a user-writeable folder in SYSTEM context on launch. This allows an attacker with unprivileged access to the system to run arbitrary code with SYSTEM privileges by placing a malicious .dll file in the respective location.
CVE-2024-6473 1 Yandex 1 Yandex Browser 2024-09-05 7.8 High
Yandex Browser for Desktop before 24.7.1.380 has a DLL Hijacking Vulnerability because an untrusted search path is used.
CVE-2024-23491 1 Intel 3 Distribution For Gdb, Distribution For Gdb Software, Oneapi Base Toolkit 2024-08-31 6.7 Medium
Uncontrolled search path in some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2024-42439 1 Zoom 2 Meeting Software Development Kit, Workplace Desktop 2024-08-29 6.5 Medium
Untrusted search path in the installer for Zoom Workplace Desktop App for macOS and Zoom Meeting SDK for macOS before 6.1.0 may allow a privileged user to conduct an escalation of privilege via local access.
CVE-2024-7061 1 Okta 1 Verify 2024-08-28 5.5 Medium
Okta Verify for Windows is vulnerable to privilege escalation through DLL hijacking. The vulnerability is fixed in Okta Verify for Windows version 5.0.2. To remediate this vulnerability, upgrade to 5.0.2 or greater.
CVE-2024-6975 1 Catonetworks 2 Cato Client, Sdp Client 2024-08-27 8.8 High
Cato Networks Windows SDP Client Local Privilege Escalation via openssl configuration file. This issue affects SDP Client before 5.10.34.
CVE-2024-6974 1 Catonetworks 2 Cato Client, Sdp Client 2024-08-27 8.8 High
Cato Networks Windows SDP Client Local Privilege Escalation via self-upgradeThis issue affects SDP Client: before 5.10.34.
CVE-2024-37127 1 Dell 1 Peripheral Manager 2024-08-27 7.8 High
Dell Peripheral Manager, versions prior to 1.7.6, contain an uncontrolled search path element vulnerability. An attacker could potentially exploit this vulnerability through preloading malicious DLL or symbolic link exploitation, leading to arbitrary code execution and escalation of privilege