Vulnerabilities (CVE)

Filtered by CWE-426
Total 553 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-9492 2 Microsoft, Trendmicro 2 Windows, Officescan 2024-11-21 4.6 MEDIUM 7.8 HIGH
A DLL side-loading vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow an authenticated attacker to gain code execution and terminate the product's process - disabling endpoint protection. The attacker must have already gained authentication and have local access to the vulnerable system.
CVE-2019-8801 1 Apple 2 Itunes, Mac Os X 2024-11-21 4.4 MEDIUM 7.8 HIGH
A dynamic library loading issue existed in iTunes setup. This was addressed with improved path searching. This issue is fixed in macOS Catalina 10.15.1, iTunes for Windows 12.10.2. Running the iTunes installer in an untrusted directory may result in arbitrary code execution.
CVE-2019-8461 1 Checkpoint 3 Capsule Docs Standalone Client, Endpoint Security, Remote Access Clients 2024-11-21 6.8 MEDIUM 7.8 HIGH
Check Point Endpoint Security Initial Client for Windows before version E81.30 tries to load a DLL placed in any PATH location on a clean image without Endpoint Client installed. An attacker can leverage this to gain LPE using a specially crafted DLL placed in any PATH location accessible with write permissions to the user.
CVE-2019-8453 1 Checkpoint 1 Zonealarm 2024-11-21 2.1 LOW 5.5 MEDIUM
Some of the DLLs loaded by Check Point ZoneAlarm up to 15.4.062 are taken from directories where all users have write permissions. This can allow a local attacker to replace a DLL file with a malicious one and cause Denial of Service to the client.
CVE-2019-6826 1 Schneider-electric 1 Somachine Hvac 2024-11-21 6.8 MEDIUM 7.8 HIGH
A CWE-426: Untrusted Search Path vulnerability exists in SoMachine HVAC v2.4.1 and earlier versions, which could cause arbitrary code execution on the system running SoMachine HVAC when a malicious DLL library is loaded by the product.
CVE-2019-6724 4 Apple, Barracuda, Linux and 1 more 4 Mac Os X, Vpn Client, Linux Kernel and 1 more 2024-11-21 7.2 HIGH 7.8 HIGH
The barracudavpn component of the Barracuda VPN Client prior to version 5.0.2.7 for Linux, macOS, and OpenBSD runs as a privileged process and can allow an unprivileged local attacker to load a malicious library, resulting in arbitrary code executing as root.
CVE-2019-6196 1 Lenovo 1 Installation Package 2024-11-21 6.9 MEDIUM 6.7 MEDIUM
A symbolic link vulnerability in some Lenovo installation packages, prior to version 1.2.9.3, could allow privileged file operations during file extraction and installation.
CVE-2019-6189 1 Lenovo 1 System Interface Foundation 2024-11-21 4.4 MEDIUM 7.8 HIGH
A potential vulnerability was reported in Lenovo System Interface Foundation versions before v1.1.18.3 that could allow an administrative user to load an unsigned DLL.
CVE-2019-6173 1 Lenovo 1 Installation Package 2024-11-21 6.9 MEDIUM 6.7 MEDIUM
A DLL search path vulnerability could allow privilege escalation in some Lenovo installation packages, prior to version 1.2.9.3, during installation if an attacker already has administrative privileges.
CVE-2019-6165 1 Lenovo 4 Yoga 700-11isk, Yoga 700-11isk Firmware, Yoga 700-14isk and 1 more 2024-11-21 4.4 MEDIUM 7.8 HIGH
A DLL search path vulnerability was reported in PaperDisplay Hotkey Service version 1.2.0.8 that could allow privilege escalation. Lenovo has ended support for PaperDisplay Hotkey software as the Night light feature introduced in Windows 10 Build 1703 provides similar features.
CVE-2019-6154 1 Lenovo 5 Bootable Usb, Ideacentre, Thinkcentre and 2 more 2024-11-21 6.8 MEDIUM 5.3 MEDIUM
A DLL search path vulnerability was reported in Lenovo Bootable Generator, prior to version Mar-2019, that could allow a malicious user with local access to execute code on the system.
CVE-2019-6019 1 Ipa 1 Stamp Workbench 2024-11-21 6.8 MEDIUM 7.8 HIGH
Untrusted search path vulnerability in STAMP Workbench installer all versions allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
CVE-2019-5958 1 Soumu 1 Electronic Reception And Examination Of Application For Radio Licenses 2024-11-21 6.8 MEDIUM 7.8 HIGH
Untrusted search path vulnerability in Electronic reception and examination of application for radio licenses Offline 1.0.9.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
CVE-2019-5957 1 Soumu 1 Electronic Reception And Examination Of Application For Radio Licenses 2024-11-21 6.8 MEDIUM 7.8 HIGH
Untrusted search path vulnerability in Installer of Electronic reception and examination of application for radio licenses Online 1.0.9.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
CVE-2019-5922 1 Microsoft 1 Teams 2024-11-21 6.8 MEDIUM 7.8 HIGH
Untrusted search path vulnerability in The installer of Microsoft Teams allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
CVE-2019-5921 1 Microsoft 1 Windows 7 2024-11-21 6.8 MEDIUM 7.8 HIGH
Untrusted search path vulnerability in Windows 7 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
CVE-2019-5913 2 Micco, Microsoft 2 Lhmelting, Windows 2024-11-21 6.8 MEDIUM 7.8 HIGH
Untrusted search path vulnerability in the installer of LHMelting (LHMelting for Win32 Ver 1.65.3.6 and earlier) allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
CVE-2019-5912 2 Micco, Microsoft 2 Unarj32.dll, Windows 2024-11-21 6.8 MEDIUM 7.8 HIGH
Untrusted search path vulnerability in the installer of UNARJ32.DLL (UNARJ32.DLL for Win32 Ver 1.10.1.25 and earlier) allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
CVE-2019-5911 2 Micco, Microsoft 2 Unlha32.dll, Windows 2024-11-21 6.8 MEDIUM 7.8 HIGH
Untrusted search path vulnerability in the installer of UNLHA32.DLL (UNLHA32.DLL for Win32 Ver 2.67.1.2 and earlier) allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
CVE-2019-5631 1 Rapid7 1 Insightappsec 2024-11-21 9.3 HIGH 7.8 HIGH
The Rapid7 InsightAppSec broker suffers from a DLL injection vulnerability in the 'prunsrv.exe' component of the product. If exploited, a local user of the system (who must already be authenticated to the operating system) can elevate their privileges with this vulnerability to the privilege level of InsightAppSec (usually, SYSTEM). This issue affects version 2019.06.24 and prior versions of the product.