CVE-2019-25293

BlueStacks App Player 2.4.44.62.57 contains an unquoted service path vulnerability in the BstHdLogRotatorSvc service that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in C:\Program Files x86\Bluestacks\HD-LogRotatorService.exe to inject...

EUVD-2019-19409

BlueStacks App Player 2.4.44.62.57 contains an unquoted service path vulnerability in the BstHdLogRotatorSvc service that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in C:\Program Files x86\Bluestacks\HD-LogRotatorService.exe to inject...

EUVD-2019-19405

Alps HID Monitor Service 8.1.0.10 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated privileges. Attackers can exploit the unquoted path in C:\Program Files\Apoint2K\HidMonitorSvc.exe to inject malicious executables and...

CVE-2025-10314

Incorrect Default Permissions vulnerability in Mitsubishi Electric Corporation FREQSHIP-mini for Windows versions 8.0.0 to 8.0.2 allows a local attacker to execute arbitrary code with system privileges by replacing service executable files EXE or DLLs in the installation directory with specially...

PT-2026-6735

BlueStacks App Player 2.4.44.62.57 contains an unquoted service path vulnerability in the BstHdLogRotatorSvc service that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in C:Program Files x86BluestacksHD-LogRotatorService.exe to inject...

BlueStacks App Player 代码问题漏洞

BlueStacks App Player is a software developed by BlueStacks Inc. in the United States, designed to allow Android applications to run on Windows systems. Version 2.4.44.62.57 of BlueStacks App Player has a code vulnerability. This vulnerability stems from an incorrect service path in the...

Wondershare Application Framework Service 代码问题漏洞

Wondershare Application Framework Service is a backend infrastructure service component developed by Wondershare Technology. Version 2.4.3.231 of Wondershare Application Framework Service contains a code vulnerability. This vulnerability stems from service paths that lack quotation marks, which m...

CVE-2025-68119

A flaw was found in Golang's cmd/go module. This vulnerability allows a local attacker to achieve local code execution by downloading and building modules with specially crafted malicious version strings. On systems with Mercurial hg installed, this can occur when downloading modules from...

CVE-2019-25274

ProShow Producer 9.0.3797 contains an unquoted service path vulnerability in the ScsiAccess service that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted binary path to inject malicious executables that will be run with LocalSystem privileges during...

CVE-2019-25272

TexasSoft CyberPlanet 6.4.131 contains an unquoted service path vulnerability in the CCSrvProxy service that allows local attackers to execute arbitrary code. Attackers can exploit the unquoted path in 'C:\Program Files x86\TenaxSoft\CyberPlanet\SrvProxy.exe' to inject malicious executables and...

Edelino Commerce Easy-Hide-IP 代码问题漏洞

Edelino Commerce Easy-Hide-IP is a VPN proxy software developed by Edelino Commerce. Version 5.0.0.3 of Edelino Commerce Easy-Hide-IP contains a code vulnerability. This vulnerability stems from service paths in the EasyRedirect service that are not enclosed in quotes, allowing local attackers to...

Photodex ProShow Producer 代码问题漏洞

Photodex ProShow Producer is a video and image slideshow production software developed by the American company Photodex. Version 9.0.3797 of Photodex ProShow Producer contains a code vulnerability. This vulnerability stems from a service path in the ScsiAccess service that lacks quotation marks,...

Adaware Web Companion 代码问题漏洞

Adaware Web Companion is a security tool developed by Adaware Corporation. Version 4.8.2078.3950 of Adaware Web Companion contains a code vulnerability. This vulnerability stems from the service path in WCAssistantService that is not enclosed in quotes, allowing local users to execute code and ga...

GCafé 代码问题漏洞

GCafé is a software developed by the GCafé company. Version 3.0 of GCafé has code vulnerabilities; these vulnerabilities stem from service paths in the gbClientService that are not properly quoted. This could allow local attackers to execute arbitrary code and gain elevated privileges...

BartVPN 代码问题漏洞

FileHorse BartVPN is a VPN proxy software developed by the FileHorse company. Version 1.2.2 of FileHorse BartVPN contains a code vulnerability. This vulnerability stems from the service path in BartVPNService that is not properly quoted, which may allow local attackers to execute arbitrary code a...

Wing FTP Server 代码问题漏洞

Wing FTP Server is an open-source, cross-platform FTP server software developed by Wing FTP Server. Version 6.0.7 of Wing FTP Server has a code vulnerability caused by an unquoted service path. This vulnerability could allow local attackers to execute arbitrary code and gain system privileges...

CVE-2019-25281 NCP_Secure_Entry_Client 9.2 - Unquoted Service Paths

NCP Secure Entry Client 9.2 contains an unquoted service path vulnerability in multiple Windows services that allows local users to potentially execute arbitrary code. Attackers can exploit the unquoted paths in services like ncprwsnt, rwsrsu, ncpclcfg, and NcpSec to inject malicious code that...

CVE-2019-25274

ProShow Producer 9.0.3797 contains an unquoted service path vulnerability in the ScsiAccess service that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted binary path to inject malicious executables that will be run with LocalSystem privileges during...

CVE-2019-25274 ProShow Producer 9.0.3797 - Unquoted Service Path

ProShow Producer 9.0.3797 contains an unquoted service path vulnerability in the ScsiAccess service that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted binary path to inject malicious executables that will be run with LocalSystem privileges during...

CVE-2019-25274 ProShow Producer 9.0.3797 - Unquoted Service Path

ProShow Producer 9.0.3797 contains an unquoted service path vulnerability in the ScsiAccess service that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted binary path to inject malicious executables that will be run with LocalSystem privileges during...