Lucene search
K

1077 matches found

RedhatCVE
RedhatCVE
added 2026/01/28 9:17 p.m.7 views

CVE-2020-36983

Quick 'n Easy FTP Service 3.2 contains an unquoted service path vulnerability that allows local attackers to execute arbitrary code during service startup. Attackers can exploit the misconfigured service binary path to inject malicious executables with elevated LocalSystem privileges during syste...

8.5CVSS6.2AI score0.00162EPSS
Exploits0References1
NVD
NVD
added 2026/01/28 1:15 p.m.5 views

CVE-2020-36989

ForensiT AppX Management Service 2.2.0.4 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted path in the service configuration to inject malicious code that would execute...

8.5CVSS0.0016EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/28 12:29 p.m.33 views

CVE-2020-36989 ForensiTAppxService 2.2.0.4 - 'ForensiTAppxService.exe' Unquoted Service Path

ForensiT AppX Management Service 2.2.0.4 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted path in the service configuration to inject malicious code that would execute...

8.5CVSS0.0016EPSS
Exploits0References3
NVD
NVD
added 2026/01/27 7:16 p.m.6 views

CVE-2020-36977

Wondershare Driver Install Service contains an unquoted service path vulnerability in the ElevationService executable that allows local attackers to potentially inject malicious code. Attackers can exploit the unquoted path to replace the service binary with a malicious executable, enabling...

8.5CVSS0.00185EPSS
Exploits0References4
CVE
CVE
added 2026/01/27 6:52 p.m.10 views

CVE-2020-36983

CVE-2020-36983 concerns an unquoted service path in Quick 'n Easy FTP Service 3.2. This misconfiguration lets local attackers cause arbitrary code execution during service startup by injecting a malicious binary into the service path, granting elevated LocalSystem privileges at boot or on service...

8.5CVSS6.2AI score0.00162EPSS
Exploits0References4
CVE
CVE
added 2026/01/27 6:51 p.m.12 views

CVE-2020-36976

CVE-2020-36976 affects Acer Global Registration Service 1.0.0.3. The issue is an unquoted service path in the service configuration, enabling a local attacker to replace or inject an executable in C:\Program Files (x86)\Acer\Registration\ that could run at service startup with LocalSystem privile...

8.5CVSS6.1AI score0.00161EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/27 6:51 p.m.20 views

CVE-2020-36977 Wondershare Driver Install Service help 10.7.1.321 - 'ElevationService' Unquote Service Path

Wondershare Driver Install Service contains an unquoted service path vulnerability in the ElevationService executable that allows local attackers to potentially inject malicious code. Attackers can exploit the unquoted path to replace the service binary with a malicious executable, enabling...

8.5CVSS0.00185EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/01/27 6:51 p.m.5 views

CVE-2020-36977

Wondershare Driver Install Service contains an unquoted service path vulnerability in the ElevationService executable that allows local attackers to potentially inject malicious code. Attackers can exploit the unquoted path to replace the service binary with a malicious executable, enabling...

8.5CVSS5.9AI score0.00185EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2026/01/27 6:51 p.m.5 views

EUVD-2020-30873

Acer Global Registration Service 1.0.0.3 contains an unquoted service path vulnerability in its service configuration that allows local users to potentially execute arbitrary code. Attackers can exploit the unquoted path in C:\Program Files x86\Acer\Registration\ to inject malicious executables...

8.5CVSS6.1AI score0.00161EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/27 12:0 a.m.5 views

PT-2026-5006

Quick 'n Easy FTP Service 3.2 contains an unquoted service path vulnerability that allows local attackers to execute arbitrary code during service startup. Attackers can exploit the misconfigured service binary path to inject malicious executables with elevated LocalSystem privileges during syste...

8.5CVSS6.2AI score0.00162EPSS
Exploits0References5
NVD
NVD
added 2026/01/26 6:16 p.m.8 views

CVE-2020-36957

PDF Complete 3.5.310.2002 contains an unquoted service path vulnerability in its pdfsvc.exe service configuration. Attackers can exploit the unquoted path to inject and execute malicious code with elevated LocalSystem privileges...

8.5CVSS0.00127EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/26 5:43 p.m.30 views

CVE-2020-36959 IDT PC Audio 1.0.6499.0 - 'STacSV' Unquoted Service Path

IDT PC Audio 1.0.6499.0 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted path in the STacSV service to inject malicious code that would execute with LocalSystem account...

8.5CVSS0.0013EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/01/26 5:43 p.m.4 views

CVE-2020-36959

IDT PC Audio 1.0.6499.0 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted path in the STacSV service to inject malicious code that would execute with LocalSystem account...

8.5CVSS6.2AI score0.0013EPSS
Exploits0References3
CVE
CVE
added 2026/01/26 5:43 p.m.10 views

CVE-2020-36959

IDT PC Audio 1.0.6499.0 is affected by an unquoted service path vulnerability in the STacSV service, enabling local attackers to potentially execute arbitrary code with LocalSystem privileges during service startup. Evidence from multiple sources confirms the vulnerable component (STacSV) and the...

8.5CVSS6.2AI score0.0013EPSS
Exploits0References3
EUVD
EUVD
added 2026/01/26 5:43 p.m.4 views

EUVD-2020-30851

PDF Complete 3.5.310.2002 contains an unquoted service path vulnerability in its pdfsvc.exe service configuration. Attackers can exploit the unquoted path to inject and execute malicious code with elevated LocalSystem privileges...

8.5CVSS6AI score0.00127EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/26 5:43 p.m.32 views

CVE-2020-36957 PDF Complete 3.5.310.2002 - 'pdfsvc.exe' Unquoted Service Path

PDF Complete 3.5.310.2002 contains an unquoted service path vulnerability in its pdfsvc.exe service configuration. Attackers can exploit the unquoted path to inject and execute malicious code with elevated LocalSystem privileges...

8.5CVSS0.00127EPSS
Exploits0References3
CVE
CVE
added 2026/01/26 5:43 p.m.14 views

CVE-2020-36957

CVE-2020-36957 corresponds to the unquoted service path vulnerability in PDF Complete 3.5.310.2002, specifically in the pdfsvc.exe service configuration. The root cause is an unquoted image path, allowing an attacker to inject and execute malicious code with elevated LocalSystem privileges. Conne...

8.5CVSS6AI score0.00127EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/26 12:0 a.m.6 views

PT-2026-4783

IDT PC Audio 1.0.6499.0 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted path in the STacSV service to inject malicious code that would execute with LocalSystem account...

8.5CVSS6.2AI score0.0013EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/01/25 2:1 p.m.37 views

CVE-2020-36937 MEMU PLAY 3.7.0 - 'MEmusvc' Unquoted Service Path

Microvirt MEMU Play 3.7.0 contains an unquoted service path vulnerability in the MEmusvc Windows service that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted binary path to inject malicious executables that will be run with elevated LocalSystem...

8.5CVSS0.00119EPSS
Exploits0References3
CVE
CVE
added 2026/01/25 2:1 p.m.13 views

CVE-2020-36937

The CVE-2020-36937 entry concerns Microvirt MEMU Play 3.7.0, where the MEmusvc Windows service has an unquoted service path. This allows a local attacker to potentially execute arbitrary code by injecting a malicious executable placed in the unquoted path, with elevated LocalSystem privileges. Do...

8.5CVSS5.9AI score0.00119EPSS
Exploits0References3
Rows per page
Query Builder