PT-2026-3300

Disk Sorter Server 13.6.12 contains an unquoted service path vulnerability in its binary path configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in 'C:Program FilesDisk Sorter Serverbindisksrs.exe' to inject malicious executabl...

Flexense Disk Savvy code-related vulnerabilities

Flexense Disk Savvy is a hard drive space analysis tool developed by Flexense Corporation. Version 13.6.14 of Flexense Disk Savvy contains a code vulnerability. This vulnerability stems from Windows service configurations that include service paths without quotes, which may allow for the executio...

Flexense Dup Scout security vulnerabilities

Flexense Dup Scout is a file cleanup tool developed by Flexense Corporation. Version 13.5.28 of Flexense Dup Scout contains a security vulnerability. This vulnerability stems from the Windows service configuration, where service paths are defined without quotes, potentially allowing for the...

Flexense Disk Sorter Enterprise security vulnerabilities

Flexense Disk Sorter Enterprise is a file management and disk space analysis software developed by Flexense Corporation. Version 13.6.12 of Flexense Disk Sorter Enterprise contains a security vulnerability. This vulnerability stems from the use of service paths without quotes in Windows service...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001148)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001148 advisory. The Linux Kernel version 3.18 contains a dangerous feature vulnerability in modifyuserhwbreakpoint that can result in crash and possibly memory corruption. This atta...

MiracleLinux 3 : automake-1.9.6-3.AXS3 (AXSA:2014-541:01)

The remote MiracleLinux 3 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2014-541:01 advisory. Description : Automake is a tool for automatically generating Makefile.in' files compliant with the GNU Coding Standards. You should install Automake if you a...

MiracleLinux 4 : zsh-4.3.11-8.AXS4 (AXSA:2018-3183:01)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2018-3183:01 advisory. zsh: Stack-based buffer overflow in genmatchesfiles at compctl.c CVE-2018-1083 zsh: buffer overflow when scanning very long directory paths for...

CVE-2021-47809

Disk Sorter Enterprise 13.6.12 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in 'C:\Program Files\Disk Sorter Enterprise\bin\disksrs.exe' to inject...

CVE-2021-47807 Sync Breeze 13.6.18 - 'Multiple' Unquoted Service Path

Sync Breeze 13.6.18 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in service binaries located in 'Program Files' directories to inject malicious...

CVE-2021-47806 Dup Scout 13.5.28 - 'Multiple' Unquoted Service Path

Dup Scout 13.5.28 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in 'C:\Program Files\Dup Scout Server\bin\dupscts.exe' to inject malicious executables...

CVE-2021-47805

Disk Savvy 13.6.14 exposes an unquoted service path in its Windows service configuration, enabling local attackers to potentially execute arbitrary code with elevated LocalSystem privileges. The initial descriptions state this risk due to unquoted service binaries, but there are no official patch...

CVE-2021-47806

CVE-2021-47806 affects Dup Scout 13.5.28 and is caused by an unquoted Windows service path in the Dup Scout Server binary dupsc ts.exe located at C:\Program Files\Dup Scout Server\bin\dupscts.exe. This unquoted path could allow a local attacker to insert a malicious executable and gain privilege ...

CVE-2021-47803 iFunbox 4.2 - 'Apple Mobile Device Service' Unquoted Service Path

iFunbox 4.2 contains an unquoted service path vulnerability in the Apple Mobile Device Service that allows local attackers to execute code with elevated privileges. Attackers can insert a malicious executable into the unquoted service path to run with LocalSystem privileges when the service...

CVE-2021-47792 Remote Mouse 4.002 - Unquoted Service Path

Remote Mouse 4.002 contains an unquoted service path vulnerability that allows local attackers to execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted service path in the RemoteMouseService to inject malicious executables and gain administrative access...

CVE-2020-36927 DiskPulse 13.6.14 - Unquoted Service Path

DiskPulse Enterprise 13.6.14 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in 'C:\Program Files\Disk Pulse Enterprise\bin\diskpls.exe' to inject...

CVE-2020-36927

DiskPulse Enterprise 13.6.14 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in 'C:\Program Files\Disk Pulse Enterprise\bin\diskpls.exe' to inject...

EUVD-2026-2774

HTTPDebuggerPro 9.11 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path in the service configuration to inject malicious executables and gain elevated...

CVE-2021-47762

HTTPDebuggerPro 9.11 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path in the service configuration to inject malicious executables and gain elevated...

PT-2026-3038

HTTPDebuggerPro 9.11 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path in the service configuration to inject malicious executables and gain elevated...

PT-2026-3176

Name of the Vulnerable Software and Affected Versions Dup Scout version 13.5.28 Description The software contains an unquoted service path issue in its Windows service configuration. This allows local attackers to potentially execute arbitrary code. The vulnerable path is located in 'C:Program...