CVE-2021-47809 Disk Sorter Enterprise 13.6.12 - 'Disk Sorter Enterprise' Unquoted Service Path

Disk Sorter Enterprise 13.6.12 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in 'C:\Program Files\Disk Sorter Enterprise\bin\disksrs.exe' to inject...

CVE-2021-47809

Disk Sorter Enterprise 13.6.12 is affected by an unquoted service path vulnerability in its Windows service configuration. The issue arises from the unquoted path 'C:\Program Files\Disk Sorter Enterprise\bin\disksrs.exe', which could allow a local attacker to inject a malicious executable and esc...

CVE-2021-47809

Disk Sorter Enterprise 13.6.12 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in 'C:\Program Files\Disk Sorter Enterprise\bin\disksrs.exe' to inject...

CVE-2021-47805

Disk Savvy 13.6.14 exposes an unquoted service path in its Windows service configuration, enabling local attackers to potentially execute arbitrary code with elevated LocalSystem privileges. The initial descriptions state this risk due to unquoted service binaries, but there are no official patch...

CVE-2021-47805 Disk Savvy 13.6.14 - 'Multiple' Unquoted Service Path

Disk Savvy 13.6.14 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in service binaries to inject malicious executables that will be run with elevated...

CVE-2021-47805

Disk Savvy 13.6.14 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in service binaries to inject malicious executables that will be run with elevated...

CVE-2021-47805 Disk Savvy 13.6.14 - 'Multiple' Unquoted Service Path

Disk Savvy 13.6.14 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in service binaries to inject malicious executables that will be run with elevated...

CVE-2020-36927

DiskPulse Enterprise 13.6.14 is affected by an unquoted service path vulnerability in its Windows service configuration. The unquoted path is 'C:\Program Files\Disk Pulse Enterprise\bin\diskpls.exe', which could allow a local attacker to inject a malicious executable and escalate privileges. The ...

hfsplus: Verify inode mode when loading from disk

...

PT-2026-3175

Disk Savvy 13.6.14 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in service binaries to inject malicious executables that will be run with elevated...

PT-2026-3179

Disk Sorter Enterprise 13.6.12 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in 'C:Program FilesDisk Sorter Enterprisebindisksrs.exe' to inject malicio...

PT-2026-3148

Name of the Vulnerable Software and Affected Versions DiskPulse Enterprise version 13.6.14 Description The software contains an unquoted service path vulnerability in its Windows service configuration. This allows local attackers to potentially execute arbitrary code. The vulnerability exists due...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002989)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002989 advisory. The tpacketrcv function in net/packet/afpacket.c in the Linux kernel before 4.13 mishandles vnet headers, which might allow local users to cause a denial of service...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002120)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002120 advisory. The udfreadinode function in fs/udf/inode.c in the Linux kernel before 3.18.2 does not ensure a certain data-structure size consistency, which allows local users to...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002058)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002058 advisory. The UDF filesystem implementation in the Linux kernel before 3.18.2 does not validate certain lengths, which allows local users to cause a denial of service buffer...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002913)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002913 advisory. Use-after-free vulnerability in the diskseqfstop function in block/genhd.c in the Linux kernel before 4.7.1 allows local users to gain privileges by leveraging the...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001781)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001781 advisory. Heap-based buffer overflow in the udfloadlogicalvol function in fs/udf/super.c in the Linux kernel before 3.4.5 allows remote attackers to cause a denial of service...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001930)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001930 advisory. Multiple race conditions in the ext4 filesystem implementation in the Linux kernel before 4.5 allow local users to cause a denial of service disk corruption by writi...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002208)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002208 advisory. Multiple race conditions in the ext4 filesystem implementation in the Linux kernel before 4.5 allow local users to cause a denial of service disk corruption by writi...

SUSE CVE-2025-68767

In the Linux kernel, the following vulnerability has been resolved: hfsplus: Verify inode mode when loading from disk syzbot is reporting that SIFMT bits of inode-imode can become bogus when the SIFMT bits of the 16bits "mode" field loaded from disk are corrupted. According to 1, the permissions...