CVE-2020-37061

CVE-2020-37061 affects BOOTP Turbo 2.0.1214 and describes an unquoted service path vulnerability that can allow a local attacker to potentially execute arbitrary code with elevated system privileges. The vulnerability is triggered when the service starts with LocalSystem permissions, via an unquo...

CVE-2020-37045

Veritas NetBackup 7.0 contains an unquoted service path vulnerability in the NetBackup INET Daemon service that allows local users to potentially execute arbitrary code. Attackers can exploit the unquoted path in C:\Program Files\Veritas\NetBackup\bin\bpinetd.exe to inject malicious code that wou...

CVE-2020-37047

Deep Instinct Windows Agent 1.2.29.0 contains an unquoted service path vulnerability in the DeepMgmtService that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in C:\Program Files\HP Sure Sense\DeepMgmtService.exe to inject malicio...

EUVD-2020-30972

Veritas NetBackup 7.0 contains an unquoted service path vulnerability in the NetBackup INET Daemon service that allows local users to potentially execute arbitrary code. Attackers can exploit the unquoted path in C:\Program Files\Veritas\NetBackup\bin\bpinetd.exe to inject malicious code that wou...

CVE-2020-37037 AVAST SecureLine 5.5.522.0 - 'SecureLine' Unquoted Service Path

Avast SecureLine 5.5.522.0 contains an unquoted service path vulnerability that allows local users to potentially execute code with elevated system privileges. Attackers can exploit the unquoted path in the service configuration to inject malicious code that would execute with LocalSystem account...

CVE-2020-37037

CVE-2020-37037 concerns Avast SecureLine 5.5.522.0, which contains an unquoted service path vulnerability. The root cause is an unquoted service path in the affected service configuration, allowing local users to potentially inject and execute code with LocalSystem privileges during service start...

PT-2026-5575

Avast SecureLine 5.5.522.0 contains an unquoted service path vulnerability that allows local users to potentially execute code with elevated system privileges. Attackers can exploit the unquoted path in the service configuration to inject malicious code that would execute with LocalSystem account...

PT-2026-5583

EPSON EasyMP Network Projection 2.81 contains an unquoted service path vulnerability in the EMP NSWLSV service that allows local users to potentially execute arbitrary code. Attackers can exploit the unquoted path in C:Program Files x86EPSON ProjectorEasyMP Network Projection V2 to inject malicio...

CVE-2020-37058

Andrea ST Filters Service 1.0.64.7 contains an unquoted service path vulnerability in its Windows service configuration. Local attackers can exploit the unquoted path to inject malicious code that will execute with elevated LocalSystem privileges during service startup...

CVE-2020-37030

CVE-2020-37030 corresponds to an unquoted service path vulnerability in Outline Service 1.3.3. The issue allows local attackers to execute arbitrary code with elevated privileges by abusing the unquoted binary path at C:\Program Files (x86)\Outline during service startup, resulting in LocalSystem...

CVE-2020-37058

The CVE-2020-37058 entry concerns the Windows service configuration for Andrea ST Filters Service 1.0.64.7 , which has an unquoted service path vulnerability. Local attackers can leverage the unquoted path to execute code at service startup with LocalSystem privileges, as described in connected s...

CVE-2020-37017 CodeMeter 6.60 - 'CodeMeter.exe' Unquoted Service Path

CodeMeter 6.60 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path in the CodeMeter Runtime Server service to inject malicious code that would execute with...

PT-2026-5290

BarcodeOCR 19.3.6 contains an unquoted service path vulnerability that allows local attackers to execute code with elevated privileges during system startup. Attackers can exploit the unquoted path in the service configuration to inject malicious executables that will run with LocalSystem...

CVE-2020-36983

Quick 'n Easy FTP Service 3.2 contains an unquoted service path vulnerability that allows local attackers to execute arbitrary code during service startup. Attackers can exploit the misconfigured service binary path to inject malicious executables with elevated LocalSystem privileges during syste...

CVE-2020-36989

ForensiT AppX Management Service 2.2.0.4 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted path in the service configuration to inject malicious code that would execute...

CVE-2020-36989 ForensiTAppxService 2.2.0.4 - 'ForensiTAppxService.exe' Unquoted Service Path

ForensiT AppX Management Service 2.2.0.4 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted path in the service configuration to inject malicious code that would execute...

CVE-2020-36977

Wondershare Driver Install Service contains an unquoted service path vulnerability in the ElevationService executable that allows local attackers to potentially inject malicious code. Attackers can exploit the unquoted path to replace the service binary with a malicious executable, enabling...

CVE-2020-36983

CVE-2020-36983 concerns an unquoted service path in Quick 'n Easy FTP Service 3.2. This misconfiguration lets local attackers cause arbitrary code execution during service startup by injecting a malicious binary into the service path, granting elevated LocalSystem privileges at boot or on service...

CVE-2020-36977 Wondershare Driver Install Service help 10.7.1.321 - 'ElevationService' Unquote Service Path

Wondershare Driver Install Service contains an unquoted service path vulnerability in the ElevationService executable that allows local attackers to potentially inject malicious code. Attackers can exploit the unquoted path to replace the service binary with a malicious executable, enabling...

CVE-2020-36977

Wondershare Driver Install Service contains an unquoted service path vulnerability in the ElevationService executable that allows local attackers to potentially inject malicious code. Attackers can exploit the unquoted path to replace the service binary with a malicious executable, enabling...