Weird Solutions DHCP Turbo 代码问题漏洞

Weird Solutions DHCP Turbo is a DHCP server software developed by Weird Solutions Corporation. Version 4.61298 of Weird Solutions DHCP Turbo contains a code vulnerability caused by an unquoted service path. This vulnerability could allow local attackers to execute arbitrary code and gain elevated...

PT-2026-5578

Iskysoft Application Framework Service 2.4.3.241 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated privileges. Attackers can exploit the unquoted path in the service configuration to inject malicious executables that would ...

Weird Solutions TFTP Turbo 代码问题漏洞

Weird Solutions TFTP Turbo is a TFTP server software developed by Weird Solutions Corporation. The version 4.6.1273 of Weird Solutions TFTP Turbo contains a code vulnerability. This vulnerability stems from paths that lack quotation marks in the service configuration, which may allow local...

Weird Solutions BOOTP Turbo 代码问题漏洞

Weird Solutions BOOTP Turbo is a BOOTP and DHCP server software developed by Weird Solutions. Version 2.0.1214 of Weird Solutions BOOTP Turbo contains a code vulnerability caused by an unquoted service path. This vulnerability could allow local attackers to execute arbitrary code and gain system...

Iskysoft Application Framework Service 代码问题漏洞

Iskysoft Application Framework Service is a backend core basic service component provided by Iskysoft Corporation in the United States. Version 2.4.3.241 of Iskysoft Application Framework Service contains a code vulnerability. This vulnerability arises from the lack of quotation marks around...

EUVD-2020-30951

Port Forwarding Wizard 4.8.0 contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code through a long request in the Register feature. Attackers can craft a malicious payload with an egg tag and overwrite SEH handlers to potentially execute shellcode on...

EulerOS Virtualization 2.10.1 : icu (EulerOS-SA-2026-1121)

According to the versions of the icu packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A stack buffer overflow was found in Internationl components for unicode ICU . While running the genrb binary, the 'subtag' struct...

CVE-2020-37025

CVE-2020-37025 affects Port Forwarding Wizard 4.8.0. A buffer overflow in the Register feature lets local attackers send a long request to overwrite SEH handlers and potentially execute shellcode on vulnerable Windows systems. Descriptions indicate an egg-tag payload may be crafted to trigger the...

CVE-2020-37025

Port Forwarding Wizard 4.8.0 contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code through a long request in the Register feature. Attackers can craft a malicious payload with an egg tag and overwrite SEH handlers to potentially execute shellcode on...

CVE-2020-37001 Frigate Professional 3.36.0.9 - 'Pack File' Buffer Overflow (SEH Egghunter)

Frigate Professional 3.36.0.9 contains a local buffer overflow vulnerability in the Pack File feature that allows attackers to execute arbitrary code by overflowing the 'Archive To' input field. Attackers can craft a malicious payload that overwrites the Structured Exception Handler SEH and uses ...

AZL-75728 CVE-2025-68119 affecting package golang for versions less than 1.25.6-1

Downloading and building modules with malicious version strings can cause local code execution. On systems with Mercurial hg installed, downloading modules from non-standard sources e.g., custom domains can cause unexpected code execution due to how external VCS commands are constructed. This iss...

CVE-2025-68119

Downloading and building modules with malicious version strings can cause local code execution. On systems with Mercurial hg installed, downloading modules from non-standard sources e.g., custom domains can cause unexpected code execution due to how external VCS commands are constructed. This iss...

CVE-2020-36990

Input Director 1.4.3 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted path during system startup or reboot to inject and run malicious executables with...

CVE-2020-36992

Nord VPN 6.31.13.0 contains an unquoted service path vulnerability in its nordvpn-service that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted binary path during system startup or reboot to potentially run malicious code with LocalSystem...

CVE-2020-36985

IP Watcher 3.0.0.30 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to execute arbitrary code. Attackers can exploit the unquoted binary path to inject malicious executables that will be launched with elevated LocalSystem privileges...

CVE-2020-36987

Program Access Controller 1.2.0.0 contains an unquoted service path vulnerability in PACService.exe that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted path during system startup or reboot to inject and run malicious executables with LocalSyste...

EUVD-2020-30897

ForensiT AppX Management Service 2.2.0.4 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted path in the service configuration to inject malicious code that would execute...

CVE-2026-24882

A flaw was found in GnuPG. This vulnerability, a stack-based buffer overflow, occurs in the tpm2daemon component when processing PKDECRYPT commands for cryptographic keys secured by a Trusted Platform Module TPM. A local attacker could exploit this to execute unauthorized code, potentially gainin...

CVE-2025-30248

DLL hijacking in the WD Discovery Installer in Western Digital WD Discovery 5.2.730 on Windows allows a local attacker to execute arbitrary code via placement of a crafted dll in the installer's search path...

ForensiT AppX Management Service code-related vulnerabilities

ForensiT AppX Management Service is a system assistance service provided by the British company ForensiT. Version 2.2.0.4 of ForensiT AppX Management Service contains a code vulnerability. This vulnerability arises from the lack of quotation marks around the service path, which may allow local...