Lucene search
K

16 matches found

NVD
NVD
added 2026/02/09 7:16 a.m.12 views

CVE-2026-24466

Products provided by Oki Electric Industry Co., Ltd. and its OEM products Ricoh Co., Ltd., Murata Machinery, Ltd. register Windows services with unquoted file paths. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege...

8.4CVSS0.00137EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/02/09 6:59 a.m.31 views

CVE-2026-24466

Products provided by Oki Electric Industry Co., Ltd. and its OEM products Ricoh Co., Ltd., Murata Machinery, Ltd. register Windows services with unquoted file paths. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege...

8.4CVSS0.00137EPSS
Exploits0References5
NVD
NVD
added 2025/12/09 4:18 p.m.5 views

CVE-2025-66271

Clone for Windows provided by ELECOM CO.,LTD. registers a Windows service with an unquoted file path. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege...

8.4CVSS0.00135EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/12/09 8:29 a.m.20 views

CVE-2025-66271

Clone for Windows provided by ELECOM CO.,LTD. registers a Windows service with an unquoted file path. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege...

8.4CVSS0.00135EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.4 views

PT-2025-49825

Clone for Windows provided by ELECOM CO.,LTD. registers a Windows service with an unquoted file path. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege...

8.4CVSS7.7AI score0.00135EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/11/06 7:17 a.m.8 views

CVE-2025-62225

Optical Disc Archive Software provided by Sony Corporation registers a Windows service with an unquoted file path. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege...

8.4CVSS7.7AI score0.00151EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/05 6:19 a.m.10 views

CVE-2025-64151

Multiple Roboticsware products provided by Roboticsware PTE. LTD. register Windows services with unquoted file paths. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege...

8.4CVSS0.00151EPSS
Exploits0References2
CVE
CVE
added 2025/11/05 6:19 a.m.17 views

CVE-2025-64151

CVE-2025-64151 affects multiple Roboticsware products (Roboticsware PTE. LTD.) where Windows services are registered with unquoted file paths. This leads to a local privilege escalation: a user with write access to the system drive root can trigger arbitrary code execution with SYSTEM privileges....

8.4CVSS7.1AI score0.00151EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/05 12:0 a.m.7 views

PT-2025-45084

Name of the Vulnerable Software and Affected Versions Sony Optical Disc Archive Software affected versions not specified Description The Optical Disc Archive Software from Sony Corporation registers a Windows service with an unquoted file path. A user possessing write permissions to the system...

8.4CVSS7.3AI score0.00151EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/10/23 4:14 a.m.14 views

CVE-2025-61865

Multiple NAS management applications provided by I-O DATA DEVICE, INC. register Windows services with unquoted file paths. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege...

8.4CVSS0.00184EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/10/11 5:42 a.m.9 views

CVE-2025-61871

NAS Navigator2 Windows version by BUFFALO INC. registers a Windows service with an unquoted file path. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege...

8.4CVSS7.7AI score0.00155EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/10 4:52 a.m.9 views

CVE-2025-61871

NAS Navigator2 Windows version by BUFFALO INC. registers a Windows service with an unquoted file path. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege...

8.4CVSS0.00155EPSS
Exploits0References2
CVE
CVE
added 2025/09/17 4:7 a.m.16 views

CVE-2025-59307

CVE-2025-59307 concerns Century Corporation’s RAID Manager. It is caused by an unquoted Windows service path, allowing a user with write access to the system drive root to execute arbitrary code with SYSTEM privileges. Affected product: RAID Manager. Root cause (CWE-428): unquoted service path. I...

8.4CVSS7.4AI score0.00166EPSS
Exploits0References2
CVE
CVE
added 2025/09/05 5:36 a.m.18 views

CVE-2025-58400

CVE-2025-58400 affects RATOC RAID Monitoring Manager for Windows by RATOC Systems, Inc. The root cause is an unquoted Windows service path, enabling a user with write access to the system drive root directory to run arbitrary code with SYSTEM privileges. Affected products include RATOC RAID Monit...

8.4CVSS7.3AI score0.00161EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/08/22 6:37 a.m.39 views

CVE-2025-57699

Western Digital Kitfox for Windows provided by Western Digital Corporation registers a Windows service with an unquoted file path. A user with the write permission on the root directory of the system drive may execute arbitrary code with the SYSTEM privilege...

8.4CVSS0.00155EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2020/09/29 8:15 p.m.3 views

freerdp: out-of-bounds read in irp functions

In FreeRDP before 2.1.0, there is an out-of-bound read in irp functions parallelprocessirpcreate, serialprocessirpcreate, driveprocessirpwrite, printerprocessirpwrite, rdpeirecvpdu, serialprocessirpwrite. This has been fixed in 2.1.0...

6CVSS5.7AI score0.01151EPSS
Exploits0References4
Rows per page
Query Builder