UBUNTU-CVE-2026-1757

A flaw was identified in the interactive shell of the xmllint utility, part of the libxml2 project, where memory allocated for user input is not properly released under certain conditions. When a user submits input consisting only of whitespace, the program skips command execution but fails to fr...

CVE-2026-1757

A flaw was identified in the interactive shell of the xmllint utility, part of the libxml2 project, where memory allocated for user input is not properly released under certain conditions. When a user submits input consisting only of whitespace, the program skips command execution but fails to fr...

PT-2026-5634

Name of the Vulnerable Software and Affected Versions cameraisp affected versions not specified Description A flaw exists in cameraisp that could allow a malicious actor to escalate privileges. Specifically, the issue is a use-after-free condition. Successful exploitation of this issue could lead...

CVE-2020-37064

EPSON EasyMP Network Projection 2.81 contains an unquoted service path vulnerability in the EMPNSWLSV service that allows local users to potentially execute arbitrary code. Attackers can exploit the unquoted path in C:\Program Files x86\EPSON Projector\EasyMP Network Projection V2\ to inject...

CVE-2020-37037

Avast SecureLine 5.5.522.0 contains an unquoted service path vulnerability that allows local users to potentially execute code with elevated system privileges. Attackers can exploit the unquoted path in the service configuration to inject malicious code that would execute with LocalSystem account...

EUVD-2020-30965

EPSON EasyMP Network Projection 2.81 contains an unquoted service path vulnerability in the EMPNSWLSV service that allows local users to potentially execute arbitrary code. Attackers can exploit the unquoted path in C:\Program Files x86\EPSON Projector\EasyMP Network Projection V2\ to inject...

CVE-2020-37063 TFTP Turbo 4.6.1273 - 'TFTP Turbo 4' Unquoted Service Path

TFTP Turbo 4.6.1273 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated privileges. Attackers can exploit the unquoted path in the service configuration to inject malicious executables that will be launched with LocalSyst...

CVE-2020-37061

CVE-2020-37061 affects BOOTP Turbo 2.0.1214 and describes an unquoted service path vulnerability that can allow a local attacker to potentially execute arbitrary code with elevated system privileges. The vulnerability is triggered when the service starts with LocalSystem permissions, via an unquo...

CVE-2020-37047

Deep Instinct Windows Agent 1.2.29.0 contains an unquoted service path vulnerability in the DeepMgmtService that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in C:\Program Files\HP Sure Sense\DeepMgmtService.exe to inject malicio...

CVE-2020-37045

Veritas NetBackup 7.0 contains an unquoted service path vulnerability in the NetBackup INET Daemon service that allows local users to potentially execute arbitrary code. Attackers can exploit the unquoted path in C:\Program Files\Veritas\NetBackup\bin\bpinetd.exe to inject malicious code that wou...

EUVD-2020-30972

Veritas NetBackup 7.0 contains an unquoted service path vulnerability in the NetBackup INET Daemon service that allows local users to potentially execute arbitrary code. Attackers can exploit the unquoted path in C:\Program Files\Veritas\NetBackup\bin\bpinetd.exe to inject malicious code that wou...

CVE-2020-37037 AVAST SecureLine 5.5.522.0 - 'SecureLine' Unquoted Service Path

Avast SecureLine 5.5.522.0 contains an unquoted service path vulnerability that allows local users to potentially execute code with elevated system privileges. Attackers can exploit the unquoted path in the service configuration to inject malicious code that would execute with LocalSystem account...

CVE-2020-37037

CVE-2020-37037 concerns Avast SecureLine 5.5.522.0, which contains an unquoted service path vulnerability. The root cause is an unquoted service path in the affected service configuration, allowing local users to potentially inject and execute code with LocalSystem privileges during service start...

PT-2026-5575

Avast SecureLine 5.5.522.0 contains an unquoted service path vulnerability that allows local users to potentially execute code with elevated system privileges. Attackers can exploit the unquoted path in the service configuration to inject malicious code that would execute with LocalSystem account...

PT-2026-5583

EPSON EasyMP Network Projection 2.81 contains an unquoted service path vulnerability in the EMP NSWLSV service that allows local users to potentially execute arbitrary code. Attackers can exploit the unquoted path in C:Program Files x86EPSON ProjectorEasyMP Network Projection V2 to inject malicio...

CVE-2020-37058

Andrea ST Filters Service 1.0.64.7 contains an unquoted service path vulnerability in its Windows service configuration. Local attackers can exploit the unquoted path to inject malicious code that will execute with elevated LocalSystem privileges during service startup...

CVE-2020-37058

The CVE-2020-37058 entry concerns the Windows service configuration for Andrea ST Filters Service 1.0.64.7 , which has an unquoted service path vulnerability. Local attackers can leverage the unquoted path to execute code at service startup with LocalSystem privileges, as described in connected s...

CVE-2020-37030

CVE-2020-37030 corresponds to an unquoted service path vulnerability in Outline Service 1.3.3. The issue allows local attackers to execute arbitrary code with elevated privileges by abusing the unquoted binary path at C:\Program Files (x86)\Outline during service startup, resulting in LocalSystem...

CVE-2020-37017 CodeMeter 6.60 - 'CodeMeter.exe' Unquoted Service Path

CodeMeter 6.60 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path in the CodeMeter Runtime Server service to inject malicious code that would execute with...

PT-2026-5290

BarcodeOCR 19.3.6 contains an unquoted service path vulnerability that allows local attackers to execute code with elevated privileges during system startup. Attackers can exploit the unquoted path in the service configuration to inject malicious executables that will run with LocalSystem...