CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2026/01/29 9:16 a.m.•4 views

CVE-2026-23569

An out-of-bounds read vulnerability in the TeamViewer DEX Client former 1E Client - Content Distribution Service NomadBranch.exe prior version 26.1 for Windows allows a remote attacker to leak stack memory and cause a denial of service via a crafted request. The leaked stack memory could be used ...

7.5CVSS0.00079EPSS

EUVD•added 2026/01/29 8:49 a.m.•4 views

EUVD-2026-4993

6.5CVSS5.9AI score0.00079EPSS

ATTACKERKB•added 2026/01/29 8:49 a.m.•4 views

CVE-2026-23569

6.5CVSS5.9AI score0.00079EPSS

Exploits0References2

Vulnrichment•added 2026/01/29 8:49 a.m.•5 views

CVE-2026-23569 Out-of-bounds read vulnerability in Content Distribution Service

6.5CVSS5.9AI score0.00079EPSS

EUVD•added 2026/01/29 8:48 a.m.•1 views

EUVD-2026-4992

5.4CVSS5.9AI score0.00014EPSS

CVE•added 2026/01/29 8:44 a.m.•7 views

CVE-2026-23565

The CVE-2026-23565 entry concerns TeamViewer DEX Client’s Content Distribution Service (NomadBranch.exe) on Windows, prior to version 26.1. The vulnerability allows an attacker on an adjacent network to cause the NomadBranch.exe process to terminate by sending crafted requests, resulting in a den...

6.5CVSS5.9AI score0.00062EPSS

Exploits0References1Affected Software1

Cvelist•added 2026/01/29 8:44 a.m.•30 views

CVE-2026-23565 Denial-of-Service in Content Distribution Service

A vulnerability in TeamViewer DEX Client former 1E Client - Content Distribution Service NomadBranch.exe prior version 26.1 for Windows allows an attacker on the adjacent network to cause the NomadBranch.exe process to terminate via crafted requests. This can result in a denial-of-service conditi...

6.5CVSS0.00062EPSS

Positive Technologies•added 2026/01/29 12:0 a.m.•4 views

PT-2026-5293

SonarQube 8.3.1 contains an unquoted service path vulnerability that allows local attackers to gain SYSTEM privileges by exploiting the service executable path. Attackers can replace the wrapper.exe in the service path with a malicious executable to execute code with highest system privileges...

8.5CVSS6.1AI score0.00023EPSS

Positive Technologies•added 2026/01/29 12:0 a.m.•4 views

PT-2026-5256

Name of the Vulnerable Software and Affected Versions TeamViewer DEX Client versions prior to 26.1 Description An out-of-bounds read issue exists in the TeamViewer DEX Client formerly 1E Client - Content Distribution Service NomadBranch.exe on Windows. A crafted request can trigger this issue,...

7.5CVSS5.5AI score0.00079EPSS

Exploits0References7

Positive Technologies•added 2026/01/29 12:0 a.m.•3 views

PT-2026-5294

10-Strike Bandwidth Monitor 3.9 contains an unquoted service path vulnerability in multiple services that allows local attackers to escalate privileges. Attackers can place a malicious executable in specific file path locations to achieve privilege escalation to SYSTEM during service startup...

8.5CVSS5.9AI score0.00022EPSS

RedhatCVE•added 2026/01/28 9:16 p.m.•6 views

CVE-2020-36975

EPSON Status Monitor 3 version 8.0 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code by exploiting the service binary path. Attackers can leverage the unquoted path in 'C:\Program Files\Common Files\EPSON\EPW!3SSRP\ES60RPB.EXE' to...

8.5CVSS6.2AI score0.00008EPSS

NVD•added 2026/01/28 1:15 p.m.•4 views

CVE-2020-36987

Program Access Controller 1.2.0.0 contains an unquoted service path vulnerability in PACService.exe that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted path during system startup or reboot to inject and run malicious executables with LocalSyste...

8.5CVSS0.00007EPSS

Cvelist•added 2026/01/28 12:29 p.m.•26 views

CVE-2020-36987 Program Access Controller v1.2.0.0 - 'PACService.exe' Unquoted Service Path

8.5CVSS0.00007EPSS

ATTACKERKB•added 2026/01/28 12:29 p.m.•3 views

CVE-2020-36987

8.5CVSS6.1AI score0.00007EPSS

Exploits0References3Affected Software1

Cvelist•added 2026/01/28 12:28 p.m.•28 views

CVE-2020-36984 EPSON 1.124 - 'seksmdb.exe' Unquoted Service Path

EPSON 1.124 contains an unquoted service path vulnerability in the SENADB service that allows local attackers to execute code with elevated system privileges. Attackers can exploit the unquoted path in C:\Program Files x86\EPSONP2B\Printer Software\Status Monitor\ to inject malicious executables...

8.5CVSS0.00007EPSS

Positive Technologies•added 2026/01/28 12:0 a.m.•6 views

PT-2026-5110

EPSON 1.124 contains an unquoted service path vulnerability in the SENADB service that allows local attackers to execute code with elevated system privileges. Attackers can exploit the unquoted path in C:Program Files x86EPSON P2BPrinter SoftwareStatus Monitor to inject malicious executables that...

8.5CVSS6.1AI score0.00007EPSS

NVD•added 2026/01/27 7:16 p.m.•3 views

CVE-2020-36981

Motorola Device Manager 2.4.5 contains an unquoted service path vulnerability in the PST Service that allows local users to potentially execute arbitrary code. Attackers can exploit the unquoted path in ForwardDaemon.exe to inject malicious code that will execute with elevated system privileges...

8.5CVSS0.00008EPSS

NVD•added 2026/01/27 7:16 p.m.•3 views

CVE-2020-36974

Realtek Andrea RT Filters 1.0.64.7 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted path in 'C:\Program Files\IDT\WDM\AESTSr64.exe' to inject malicious code that would...

8.5CVSS0.00008EPSS

Cvelist•added 2026/01/27 6:51 p.m.•17 views

CVE-2020-36981 Motorola Device Manager 2.4.5 - 'ForwardDaemon.exe ' Unquoted Service Path

8.5CVSS0.00008EPSS