22 matches found
EUVD-2022-36956
Malicious code in bioql PyPI...
EUVD-2025-25503
Malicious code in bioql PyPI...
EUVD-2023-26446
Malicious code in bioql PyPI...
Western Digital Kitfox for Windows 代码问题漏洞
Western Digital Kitfox for Windows is a hard disk management program from Western Digital. A code issue vulnerability exists in Western Digital Kitfox for Windows that originates from an unquoted file path and could lead to the execution of arbitrary code...
CVE-2022-46662
Roxio Creator LJB starts another program with an unquoted file path. Since a registered Windows service path contains spaces and are unquoted, if a malicious executable is placed on a certain path, the executable may be executed with the privilege of the Windows service. The affected product and...
Design/Logic Flaw
WAB-MAT Ver.5.0.0.8 and earlier starts another program with an unquoted file path. Since a registered Windows service path contains spaces and are unquoted, if a malicious executable is placed on a certain path, the executable may be executed with the privilege of the Windows service...
CVE-2023-22282
WAB-MAT Ver.5.0.0.8 and earlier starts another program with an unquoted file path. Since a registered Windows service path contains spaces and are unquoted, if a malicious executable is placed on a certain path, the executable may be executed with the privilege of the Windows service...
CVE-2023-22282
WAB-MAT Ver.5.0.0.8 and earlier starts another program with an unquoted file path. Since a registered Windows service path contains spaces and are unquoted, if a malicious executable is placed on a certain path, the executable may be executed with the privilege of the Windows service...
CVE-2023-22282
WAB-MAT Ver.5.0.0.8 and earlier registers its Windows service executable with an unquoted file path. If a malicious executable is placed on the unquoted path, it may be executed with the privilege of the Windows service, enabling local privilege escalation. Affected software: ELECOM WAB-MAT (Wind...
JVN#35246979: ELECOM WAB-MAT registers its windows service executable with an unquoted file path
WAB-MAT provided by ELECOM CO.,LTD. is Access Point Management Tool for corporate users. WAB-MAT registers its windows service executable with an unquoted file path CWE-428. Impact If a malicious executable is placed on a certain path, it may be executed with the privilege of the Windows service...
CVE-2022-46662
Roxio Creator LJB starts another program with an unquoted file path. Since a registered Windows service path contains spaces and are unquoted, if a malicious executable is placed on a certain path, the executable may be executed with the privilege of the Windows service. The affected product and...
Design/Logic Flaw
Roxio Creator LJB starts another program with an unquoted file path. Since a registered Windows service path contains spaces and are unquoted, if a malicious executable is placed on a certain path, the executable may be executed with the privilege of the Windows service. The affected product and...
CVE-2022-46662
Roxio Creator LJB starts another program with an unquoted file path. Since a registered Windows service path contains spaces and are unquoted, if a malicious executable is placed on a certain path, the executable may be executed with the privilege of the Windows service. The affected product and...
CVE-2022-46662
Roxio Creator LJB starts another program with an unquoted file path. Since a registered Windows service path contains spaces and are unquoted, if a malicious executable is placed on a certain path, the executable may be executed with the privilege of the Windows service. The affected product and...
CVE-2022-46662
CVE-2022-46662 affects Roxio Creator LJB (Corel) with versions 12.2 build numbers 106B62B, 106B63A, 106B69A, 106B71A, 106B74A. A root cause is an unquoted Windows service path, so if a malicious executable is placed on the path, it may be run with the privileges of the Windows service. Documented...
CVE-2022-33920
Dell GeoDrive, versions prior to 2.2, contains an Unquoted File Path vulnerability. A low privilege attacker could potentially exploit this vulnerability, leading to the execution of arbitrary code in the SYSTEM security context...
Design/Logic Flaw
Dell GeoDrive, versions prior to 2.2, contains an Unquoted File Path vulnerability. A low privilege attacker could potentially exploit this vulnerability, leading to the execution of arbitrary code in the SYSTEM security context...
CVE-2022-33920
CVE-2022-33920 affects Dell GeoDrive prior to v2.2. The issue is an Unquoted File Path vulnerability that can allow a low-privilege attacker to execute arbitrary code in the SYSTEM context. Affected component: Dell GeoDrive executable/installation path with unquoted spaces. Impact: potential full...
CVE-2022-33920
Dell GeoDrive, versions prior to 2.2, contains an Unquoted File Path vulnerability. A low privilege attacker could potentially exploit this vulnerability, leading to the execution of arbitrary code in the SYSTEM security context...
CVE-2022-33920
Dell GeoDrive, versions prior to 2.2, contains an Unquoted File Path vulnerability. A low privilege attacker could potentially exploit this vulnerability, leading to the execution of arbitrary code in the SYSTEM security context...