Lucene search
K

1079 matches found

Cvelist
Cvelist
added 2026/02/06 4:41 p.m.28 views

CVE-2019-25305 JumpStart 0.6.0.0 - 'jswpbapi' Unquoted Service Path

JumpStart 0.6.0.0 contains an unquoted service path vulnerability in the jswpbapi service running with LocalSystem privileges. Attackers can exploit the unquoted path containing spaces to inject and execute malicious code with elevated system permissions...

8.5CVSS0.00128EPSS
Exploits0References3
EUVD
EUVD
added 2026/02/06 4:41 p.m.4 views

EUVD-2019-19408

JumpStart 0.6.0.0 contains an unquoted service path vulnerability in the jswpbapi service running with LocalSystem privileges. Attackers can exploit the unquoted path containing spaces to inject and execute malicious code with elevated system permissions...

8.5CVSS5.5AI score0.00128EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/02/06 12:0 a.m.5 views

PT-2026-6744

JumpStart 0.6.0.0 contains an unquoted service path vulnerability in the jswpbapi service running with LocalSystem privileges. Attackers can exploit the unquoted path containing spaces to inject and execute malicious code with elevated system permissions...

8.5CVSS5.7AI score0.00128EPSS
Exploits0References4
NVD
NVD
added 2026/02/05 12:15 a.m.7 views

CVE-2019-25287

Adaware Web Companion version 4.8.2078.3950 contains an unquoted service path vulnerability in the WCAssistantService that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in C:\Program Files x86\Lavasoft\Web Companion\Application\ t...

8.5CVSS0.0015EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/05 12:0 a.m.9 views

NCP Secure Entry Client 代码问题漏洞

NCP Secure Entry Client is a remote client connection software developed by the German company NCP. Version 9.2 of NCP Secure Entry Client contains a code vulnerability. This vulnerability stems from service paths in multiple Windows services that are not enclosed in quotes. This could allow loca...

8.5CVSS7.7AI score0.00161EPSS
Exploits0References3
CVE
CVE
added 2026/02/04 11:18 p.m.14 views

CVE-2019-25286

GCafé 3.0 is affected by an unquoted service path vulnerability in the gbClientService. The unquoted path in the service configuration enables local attackers to inject a malicious executable and have it run with LocalSystem permissions, effectively allowing local privilege escalation. Affected c...

8.5CVSS5.9AI score0.0015EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/04 11:15 p.m.31 views

CVE-2019-25276 Studio 5000 Logix Designer 30.01.00 - 'FactoryTalk Activation Service' Unquoted Service Path

Studio 5000 Logix Designer 30.01.00 contains an unquoted service path vulnerability in the FactoryTalk Activation Service that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in C:\Program Files x86\Rockwell Software\FactoryTalk...

8.5CVSS0.0019EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/02/04 11:15 p.m.4 views

CVE-2019-25281

NCP Secure Entry Client 9.2 contains an unquoted service path vulnerability in multiple Windows services that allows local users to potentially execute arbitrary code. Attackers can exploit the unquoted paths in services like ncprwsnt, rwsrsu, ncpclcfg, and NcpSec to inject malicious code that...

8.5CVSS5.8AI score0.00161EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/02/04 11:15 p.m.12 views

CVE-2019-25281

CVE-2019-25281 concerns NCP Secure Entry Client 9.2. The issue is an unquoted service path vulnerability in multiple Windows services (e.g., ncprwsnt, rwsrsu, ncpclcfg, NcpSec) that can be exploited to inject and execute code with LocalSystem privileges during service startup. Exploitation is des...

8.5CVSS5.8AI score0.00161EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/04 11:15 p.m.30 views

CVE-2019-25271 NETGATE Data Backup 3.0.620 - 'NGDatBckpSrv' Unquoted Service Path

NETGATE Data Backup 3.0.620 contains an unquoted service path vulnerability in its NGDatBckpSrv Windows service configuration. Attackers can exploit the unquoted path to inject and execute malicious code with LocalSystem privileges by placing executable files in specific directory locations...

8.5CVSS0.00329EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/02/04 11:15 p.m.4 views

CVE-2019-25271 NETGATE Data Backup 3.0.620 - 'NGDatBckpSrv' Unquoted Service Path

NETGATE Data Backup 3.0.620 contains an unquoted service path vulnerability in its NGDatBckpSrv Windows service configuration. Attackers can exploit the unquoted path to inject and execute malicious code with LocalSystem privileges by placing executable files in specific directory locations...

8.5CVSS5.5AI score0.00329EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/04 11:15 p.m.31 views

CVE-2019-25269 Amiti Antivirus 25.0.640 - Unquoted Service Path Vulnerability

Amiti Antivirus 25.0.640 contains an unquoted service path vulnerability in its Windows service configurations. Attackers can exploit the unquoted path to inject and execute malicious code with elevated LocalSystem privileges by placing executable files in specific directory locations...

8.5CVSS0.00329EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/02/04 11:15 p.m.4 views

CVE-2019-25269

Amiti Antivirus 25.0.640 contains an unquoted service path vulnerability in its Windows service configurations. Attackers can exploit the unquoted path to inject and execute malicious code with elevated LocalSystem privileges by placing executable files in specific directory locations...

8.5CVSS5.5AI score0.00329EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/04 12:0 a.m.5 views

PT-2026-5814

Name of the Vulnerable Software and Affected Versions Adaware Web Companion version 4.8.2078.3950 Description Adaware Web Companion version 4.8.2078.3950 contains an unquoted service path vulnerability in the WCAssistantService. This allows local users to potentially execute code with elevated...

8.5CVSS5.6AI score0.0015EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/02/04 12:0 a.m.6 views

PT-2026-5804

Name of the Vulnerable Software and Affected Versions NETGATE Data Backup version 3.0.620 Description The software contains an unquoted service path vulnerability in its NGDatBckpSrv Windows service configuration. This allows attackers to inject and execute malicious code with LocalSystem...

8.5CVSS5.6AI score0.00329EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/02/04 12:0 a.m.10 views

PT-2026-5809

Name of the Vulnerable Software and Affected Versions Studio 5000 Logix Designer version 30.01.00 Description Studio 5000 Logix Designer 30.01.00 has an unquoted service path issue within the FactoryTalk Activation Service. This allows local users to potentially run code with higher privileges. T...

8.5CVSS5.6AI score0.0019EPSS
Exploits0References5
NVD
NVD
added 2026/02/03 3:16 p.m.6 views

CVE-2020-37098

Disk Sorter Enterprise 12.4.16 contains an unquoted service path vulnerability that allows local attackers to execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted path in the service configuration to inject malicious executables that will be launched with...

8.5CVSS0.00119EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/02/03 2:49 p.m.2 views

CVE-2020-37102 Adaware Web Companion 4.9.2159 - 'WCAssistantService' Unquoted Service Path

Adaware Web Companion 4.9.2159 contains an unquoted service path vulnerability in the WCAssistantService that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted binary path to inject malicious executables that will be run with LocalSystem privileges...

8.5CVSS5.7AI score0.0012EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/02/03 12:24 a.m.6 views

SUSE CVE-2026-1757

A flaw was identified in the interactive shell of the xmllint utility, part of the libxml2 project, where memory allocated for user input is not properly released under certain conditions. When a user submits input consisting only of whitespace, the program skips command execution but fails to fr...

3.3CVSS5.7AI score0.00194EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.20 views

PT-2026-5847

Disk Sorter Enterprise 12.4.16 contains an unquoted service path vulnerability that allows local attackers to execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted path in the service configuration to inject malicious executables that will be launched with...

8.5CVSS6AI score0.00119EPSS
Exploits0References3
Rows per page
Query Builder