CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ATTACKERKB•added 2026/01/23 4:47 p.m.•2 views

CVE-2021-47896

PDF Complete Corporate Edition 4.1.45 contains an unquoted service path vulnerability in the pdfcDispatcher service that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in the service binary location to inject malicious executables that will b...

8.5CVSS6.1AI score0.00123EPSS

Exploits0References4Affected Software1

Vulnrichment•added 2026/01/23 4:47 p.m.•3 views

CVE-2021-47889 Softros LAN Messenger 9.6.4 - 'SoftrosSpellChecker' Unquoted Service Path

8.5CVSS5.9AI score0.00119EPSS

ATTACKERKB•added 2026/01/23 4:47 p.m.•0 views

CVE-2021-47889

8.5CVSS6.1AI score0.00119EPSS

Positive Technologies•added 2026/01/23 12:0 a.m.•5 views

PT-2026-4512

Name of the Vulnerable Software and Affected Versions PDF Complete Corporate Edition version 4.1.45 Description The software contains an unquoted service path issue in the pdfcDispatcher service. This allows local attackers to potentially execute arbitrary code. Exploitation involves leveraging t...

8.5CVSS5.8AI score0.00123EPSS

Exploits0References6

ATTACKERKB•added 2026/01/23 12:0 a.m.•2 views

CVE-2025-67264

An OS command injection vulnerability in the com.sprd.engineermode component in Doogee Note59, Note59 Pro, and Note59 Pro+ allows a local attacker to execute arbitrary code and escalate privileges via the EngineerMode ADB shell, due to incomplete patching of CVE-2025-31710...

8.4CVSS6.2AI score0.00935EPSS

Exploits2References3

CVE•added 2026/01/23 12:0 a.m.•13 views

CVE-2025-67264

CVE-2025-67264 describes an OS command-injection in the com.sprd.engineermode component on Doogee Note59/Note59 Pro/Note59 Pro+. The vulnerability allows a local attacker to execute arbitrary code and escalate privileges via the EngineerMode ADB shell, attributed to incomplete patching of CVE-202...

7.8CVSS6.1AI score0.00935EPSS

Exploits1References2Affected Software1

RedhatCVE•added 2026/01/22 5:34 p.m.•4 views

CVE-2021-47863

MacPaw Encrypto 1.0.1 contains an unquoted service path vulnerability in its Encrypto Service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in C:\Program Files\Encrypto\ to inject malicious executables and escalate...

NVD•added 2026/01/21 6:16 p.m.•3 views

Exploits0References1

CVE-2021-47887

OKI Print Job Accounting 4.4.10 contains an unquoted service path vulnerability in the OkiJaSvc service that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in 'C:\Program Files\Okidata\Print Job Accounting' to inject malicious executables and...

8.5CVSS0.00127EPSS

NVD•added 2026/01/21 6:16 p.m.•4 views

CVE-2021-47886

Pingzapper 2.3.1 contains an unquoted service path vulnerability in the PingzapperSvc service that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in 'C:\Program Files x86\Pingzapper\PZService.exe' to inject malicious executables and escalate...

8.5CVSS0.00129EPSS

Exploits0References4

NVD•added 2026/01/21 6:16 p.m.•20 views

CVE-2021-47869

Brother BRAdmin Professional 3.75 contains an unquoted service path vulnerability in the BRAScheduler service that allows local users to potentially execute arbitrary code. Attackers can place a malicious executable named 'BRAdmin' in the C:\Program Files x86\Brother\ directory to gain local syst...

8.5CVSS0.00129EPSS

Exploits0References5

CVE•added 2026/01/21 5:27 p.m.•17 views

CVE-2021-47884

Affected product and vulnerability: OKI Configuration Tool 1.6.53 with an unquoted service path in the OKI Local Port Manager service. The unquoted path is in 'C:\Program Files\Okidata\Common\extend3\portmgrsrv.exe', which can allow a local attacker to inject a malicious executable and escalate p...

ATTACKERKB•added 2026/01/21 5:27 p.m.•3 views

CVE-2021-47880

Realtek Wireless LAN Utility 700.1631 contains an unquoted service path vulnerability that allows local users to potentially execute code with elevated system privileges. Attackers can exploit the unquoted service path by inserting malicious code in the system root path that would execute during...

8.5CVSS5.6AI score0.00127EPSS

Cvelist•added 2026/01/21 5:27 p.m.•17 views

CVE-2021-47863 MacPaw Encrypto 1.0.1 - 'Encrypto Service' Unquoted Service Path

8.5CVSS0.00127EPSS

Vulnrichment•added 2026/01/21 5:27 p.m.•4 views

CVE-2021-47863 MacPaw Encrypto 1.0.1 - 'Encrypto Service' Unquoted Service Path

ATTACKERKB•added 2026/01/21 5:27 p.m.•4 views

CVE-2021-47861

Event Log Explorer 4.9.3 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted service path by placing malicious executables in specific file system locations that will be...

Cvelist•added 2026/01/21 5:27 p.m.•17 views

CVE-2021-47861 Event Log Explorer 4.9.3 - 'ElodeaEventCollectorService' Unquoted Service Path

8.5CVSS0.00127EPSS

ATTACKERKB•added 2026/01/21 5:27 p.m.•3 views

CVE-2021-47859

ActivIdentity 8.2 contains an unquoted service path vulnerability in the ac.sharedstore service that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted binary path in C:\Program Files\Common Files\ActivIdentity\ to inject malicious executables and...

8.5CVSS5.7AI score0.00127EPSS

EUVD•added 2026/01/21 5:27 p.m.•6 views

EUVD-2026-3633

Positive Technologies•added 2026/01/21 12:0 a.m.•5 views

Exploits0References5

PT-2026-3815

MacPaw Encrypto 1.0.1 contains an unquoted service path vulnerability in its Encrypto Service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in C:Program FilesEncrypto to inject malicious executables and escalate privileges...