Lucene search
K

180 matches found

NVD
NVD
added 2026/06/22 2:16 p.m.9 views

CVE-2026-12602

Incorrect default permissions in ArubaSign, affecting versions prior to v4.6.6. The vulnerability is caused by the assignment of inappropriate permissions during the software’s default installation, whereby the main executable and other programme files located in C:\Program Files have excessive...

8.8CVSS0.00122EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/22 12:34 p.m.6 views

EUVD-2026-38230

Incorrect default permissions in ArubaSign, affecting versions prior to v4.6.6. The vulnerability is caused by the assignment of inappropriate permissions during the software’s default installation, whereby the main executable and other programme files located in C:\Program Files have excessive...

8.8CVSS6.3AI score0.00122EPSS
Exploits0References1
NVD
NVD
added 2026/06/19 3:16 p.m.12 views

CVE-2020-37253

Winstep 18.06.0096 contains an unquoted service path vulnerability in the Winstep Xtreme Service that allows local attackers to escalate privileges. Attackers can place malicious executables in the Program Files directory to be executed with LocalSystem privileges when the service starts...

8.5CVSS0.00109EPSS
Exploits0References2
NVD
NVD
added 2026/06/19 3:16 p.m.9 views

CVE-2021-47985

Brother SAPSprint 7.60 contains an unquoted service path vulnerability in the SAPSprint service binary that allows local attackers to escalate privileges. Attackers can place a malicious executable in the Program Files directory path to be executed with LocalSystem privileges when the service...

8.5CVSS0.00115EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/19 2:16 p.m.7 views

EUVD-2023-60591

Chromacam 4.0.3.0 contains an unquoted service path vulnerability in the PsyFrameGrabberService that allows local attackers to execute arbitrary code by placing malicious executables in unquoted path directories. Attackers with write access to C:\ or subdirectories like C:\Program Files...

8.5CVSS6.2AI score0.0012EPSS
Exploits0References4
CVE
CVE
added 2026/06/19 2:16 p.m.10 views

CVE-2021-47985

Summary: CVE-2021-47985 affects Brother SAPSprint 7.60 and is an unquoted service path vulnerability in the SAPSprint service binary, enabling local privilege escalation. An attacker can drop a malicious executable in the Program Files path to run with LocalSystem privileges when the service star...

8.5CVSS5.8AI score0.00115EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/19 2:16 p.m.8 views

EUVD-2021-34851

Brother SAPSprint 7.60 contains an unquoted service path vulnerability in the SAPSprint service binary that allows local attackers to escalate privileges. Attackers can place a malicious executable in the Program Files directory path to be executed with LocalSystem privileges when the service...

8.5CVSS5.8AI score0.00115EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/06/19 2:16 p.m.29 views

CVE-2021-47985 Brother SAPSprint 7.60 Unquoted Service Path Privilege Escalation

Brother SAPSprint 7.60 contains an unquoted service path vulnerability in the SAPSprint service binary that allows local attackers to escalate privileges. Attackers can place a malicious executable in the Program Files directory path to be executed with LocalSystem privileges when the service...

8.5CVSS0.00115EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/06/19 2:16 p.m.29 views

CVE-2020-37253 Winstep 18.06.0096 Unquoted Service Path Privilege Escalation

Winstep 18.06.0096 contains an unquoted service path vulnerability in the Winstep Xtreme Service that allows local attackers to escalate privileges. Attackers can place malicious executables in the Program Files directory to be executed with LocalSystem privileges when the service starts...

8.5CVSS0.00109EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/19 2:16 p.m.4 views

CVE-2020-37253

Winstep 18.06.0096 contains an unquoted service path vulnerability in the Winstep Xtreme Service that allows local attackers to escalate privileges. Attackers can place malicious executables in the Program Files directory to be executed with LocalSystem privileges when the service starts...

8.5CVSS5.8AI score0.00109EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/06/19 2:16 p.m.6 views

EUVD-2020-31254

Winstep 18.06.0096 contains an unquoted service path vulnerability in the Winstep Xtreme Service that allows local attackers to escalate privileges. Attackers can place malicious executables in the Program Files directory to be executed with LocalSystem privileges when the service starts...

8.5CVSS5.8AI score0.00109EPSS
Exploits0References2
CVE
CVE
added 2026/06/19 2:16 p.m.12 views

CVE-2020-37253

The CVE pertains to Winstep 18.06.0096, where the Winstep Xtreme Service has an unquoted service path vulnerability. This allows a local attacker to escalate privileges by placing a malicious executable in Program Files that is executed with LocalSystem privileges when the service starts. Affecte...

8.5CVSS5.8AI score0.00109EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/19 2:16 p.m.5 views

CVE-2016-20095

Matrix42 Remote Control Host 3.20.0031 contains an unquoted service path vulnerability in the FastViewerRemoteService and FastViewerRemoteProxy services that allows local users to execute arbitrary code with SYSTEM privileges. Attackers can place a malicious executable in the Program Files...

8.5CVSS6.2AI score0.00119EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.16 views

PT-2026-50920

Name of the Vulnerable Software and Affected Versions Brother SAPSprint version 7.60 Description An unquoted service path issue exists in the SAPSprint service binary. This allows local attackers to escalate privileges by placing a malicious executable in the Program Files directory path, which i...

8.5CVSS5.9AI score0.00115EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.18 views

PT-2026-50913

Name of the Vulnerable Software and Affected Versions Matrix42 Remote Control Host version 3.20.0031 Description An unquoted service path issue exists in the FastViewerRemoteService and FastViewerRemoteProxy services. This allows local users to execute arbitrary code with SYSTEM privileges by...

8.5CVSS6.1AI score0.00119EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.11 views

PT-2026-50918

Name of the Vulnerable Software and Affected Versions Winstep version 18.06.0096 Description The Winstep Xtreme Service contains an unquoted service path issue. This occurs when a service path contains spaces and is not enclosed in quotes, allowing a local attacker to place a malicious executable...

8.5CVSS5.8AI score0.00109EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.18 views

PT-2026-50915

Name of the Vulnerable Software and Affected Versions TFTP Broadband version 4.3.0.1465 Description The tftpt.exe service binary contains an unquoted service path issue. This occurs when a service path contains spaces and is not enclosed in quotation marks, allowing a local attacker to place a...

8.5CVSS5.9AI score0.00119EPSS
Exploits0References5
NVD
NVD
added 2026/05/16 4:16 p.m.10 views

CVE-2020-37247

Kite 4.2.0.1 U1 contains an unquoted service path vulnerability in the KiteService Windows service that allows local attackers to escalate privileges by exploiting the service binary path. Attackers can place a malicious executable in the Program Files directory to be executed with LocalSystem...

8.5CVSS0.00115EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/16 3:26 p.m.7 views

CVE-2021-47974

VX Search 13.5.28 contains an unquoted service path vulnerability in both VX Search Server and VX Search Enterprise services that allows local attackers to escalate privileges. Attackers can place malicious executables in unquoted path directories like C:\Program Files\VX Search to execute...

8.5CVSS6.2AI score0.00121EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/05/16 3:26 p.m.109 views

CVE-2021-47974 VX Search 13.5.28 Unquoted Service Path Privilege Escalation

VX Search 13.5.28 contains an unquoted service path vulnerability in both VX Search Server and VX Search Enterprise services that allows local attackers to escalate privileges. Attackers can place malicious executables in unquoted path directories like C:\Program Files\VX Search to execute...

8.5CVSS0.00121EPSS
Exploits0References3
Rows per page
Query Builder