EUVD-2026-18935

Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. Prior to versions 38.8.6, 39.8.1, 40.8.0, and 41.0.0-beta.8, on Windows, app.setLoginItemSettingsopenAtLogin: true wrote the executable path to the Run registry key without quoting. If the app ...

CVE-2025-9818

A vulnerability CWE-428 has been identified in the Uninterruptible Power Supply UPS management application provided by OMRON SOCIAL SOLUTIONS Co., Ltd., where the executable file paths of Windows services are not enclosed in quotation marks. If the installation folder path of this product contain...

CVE-2025-9818

CVE-2025-9818 describes a CWE-428 issue in the UPS management application from OMRON SOCIAL SOLUTIONS Co., Ltd. where Windows service executable paths are not quoted, enabling potential unauthorized file execution with service privileges if the install path contains spaces. Supported by multiple ...

PT-2023-4361 · Triangle Microworks · Triangle Microworks Scada Data Gateway

Name of the Vulnerable Software and Affected Versions: Triangle MicroWorks SCADA Data Gateway affected versions not specified Description: This issue allows remote attackers to execute code on affected installations of Triangle MicroWorks SCADA Data Gateway. Although authentication is required to...

OESA-2022-2086 python-pillow security update

Security Fixes: Pillow before 9.0.1 allows attackers to delete files because spaces in temporary pathnames are mishandled.CVE-2022-24303...