CVE-2024-34116

HIGH Year: 2024
CVSS v3 Score
7.1
High
Weakness Type
CWE-427
View all →

Vulnerability Description

Creative Cloud Desktop versions 6.1.0.587 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could result in a security feature bypass. An attacker could exploit this vulnerability to load and execute malicious libraries, leading to arbitrary file delete. Exploitation of this issue requires user interaction.

Related Vulnerabilities

CVE-2019-18575

HIGH
CVSS:7.1(High)

Dell Command Configure versions prior to 4.2.1 contain an uncontrolled search path vulnerability. A locally authenticated malicious user could exploit this vulnerability by creating a symlink to a tar...

CWE-4272019

CVE-2021-38469

HIGH
CVSS:7.1(High)

Many of the services used by the affected product do not specify full paths for the DLLs they are loading. An attacker can exploit the uncontrolled search path by implanting their own DLL near the aff...

CWE-4272021

CVE-2017-5176

HIGH
CVSS:7.0(High)

A DLL Hijack issue was discovered in Rockwell Automation Connected Components Workbench (CCW). The following versions are affected: Connected Components Workbench - Developer Edition, v9.01.00 and ear...

CWE-4272017

CVE-2017-6051

HIGH
CVSS:7.0(High)

An Uncontrolled Search Path Element issue was discovered in BLF-Tech LLC VisualView HMI Version 9.9.14.0 and prior. The uncontrolled search path element vulnerability has been identified, which may al...

CWE-4272017

CVE-2017-9661

HIGH
CVSS:7.0(High)

An Uncontrolled Search Path Element issue was discovered in SIMPlight SCADA Software version 4.3.0.27 and prior. The uncontrolled search path element vulnerability has been identified, which may allow...

CWE-4272017

CVE-2018-5457

HIGH
CVSS:7.0(High)

A uncontrolled search path element issue was discovered in Vyaire Medical CareFusion Upgrade Utility used with Windows XP systems, Versions 2.0.2.2 and prior versions. A successful exploit of this vul...

CWE-4272018