Flexense VX Search 代码问题漏洞

Flexense VX Search is a rule-based automatic file search solution provided by Flexense Corporation. It allows users to search for files based on file type, category, file name, size, location, extension, regular expressions, text and binary patterns, creation, modification, and last access dates,...

IObit Uninstaller 代码问题漏洞

IObit Uninstaller is a Windows software tool designed for forced uninstallation by IObit Corporation. Version 9.5.0.15 of IObit Uninstaller has a code vulnerability. This vulnerability stems from an issue with unreferenced service paths within the IObitUnSvr service, which may allow local attacke...

NETGATE Amiti Antivirus 代码问题漏洞

NETGATE Amiti Antivirus is a antivirus software developed by the Slovak company NETGATE. NETGATE Amiti Antivirus build 23.0.305 has a code vulnerability. This vulnerability stems from service paths in the AmitiAvSrv and AmitiAntivirusHealth services that are not properly quoted. This could allow...

IOBit Malware Fighter 代码问题漏洞

IOBit Malware Fighter is a set of antivirus software developed by IOBit for Windows platforms. This software includes features such as anti-malware and virus protection. Version 4.3.1 of IOBit Malware Fighter has a code vulnerability. This vulnerability stems from service paths in the IMFservice...

CVE-2026-33253

SANUPS SOFTWARE provided by SANYO DENKI CO., LTD. registers Windows services with unquoted file paths. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege...

Small Http Server 代码问题漏洞

Small Http Server is a small HTTP server developed by Max Feoktistov. Version 3.06.36 of Small Http Server has code vulnerabilities. These vulnerabilities stem from service path paths that are not enclosed in quotes. This could allow local attackers to place malicious executable files in...

SANYO DENKI SANUPS SOFTWARE registers Windows services with unquoted file paths

Overview SANUPS SOFTWARE provided by SANYO DENKI CO., LTD. contains the following vulnerability. Unquoted search path or element CWE-428 - CVE-2026-33253 Kazuma Matsumoto of GMO Cybersecurity by IERAE, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under...

CVE-2026-33253

SANUPS SOFTWARE provided by SANYO DENKI CO., LTD. registers Windows services with unquoted file paths. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege...

CVE-2026-33253

SANUPS SOFTWARE provided by SANYO DENKI CO., LTD. registers Windows services with unquoted file paths. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege...

CVE-2026-24466

Products provided by Oki Electric Industry Co., Ltd. and its OEM products Ricoh Co., Ltd., Murata Machinery, Ltd. register Windows services with unquoted file paths. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege...

CVE-2026-24466

CVE-2026-24466: Summary Affected products: OKI Electric Industry Co., Ltd. and its OEM partners (Ricoh Co., Ltd., Murata Machinery, Ltd.). Vulnerability: Windows services registered with unquoted file paths. Root cause: A user with write permission on the system drive root can cause execution of ...

CVE-2026-24466

Products provided by Oki Electric Industry Co., Ltd. and its OEM products Ricoh Co., Ltd., Murata Machinery, Ltd. register Windows services with unquoted file paths. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege...

Oki、Ricoh和Murata Machinery多款产品 代码问题漏洞

The OKI Configuration Tool is a product of the OKI company. The OKI Configuration Tool is a configuration management tool. The RICOH SP C740 is a product of the Japanese RICOH company. The RICOH SP C740 is a color laser printer. The RICOH PC6000L is a color printer. There are code vulnerabilities...

Edelino Commerce Easy-Hide-IP 代码问题漏洞

Edelino Commerce Easy-Hide-IP is a VPN proxy software developed by Edelino Commerce. Version 5.0.0.3 of Edelino Commerce Easy-Hide-IP contains a code vulnerability. This vulnerability stems from service paths in the EasyRedirect service that are not enclosed in quotes, allowing local attackers to...

NCP Secure Entry Client 代码问题漏洞

NCP Secure Entry Client is a remote client connection software developed by the German company NCP. Version 9.2 of NCP Secure Entry Client contains a code vulnerability. This vulnerability stems from service paths in multiple Windows services that are not enclosed in quotes. This could allow loca...

GCafé 代码问题漏洞

GCafé is a software developed by the GCafé company. Version 3.0 of GCafé has code vulnerabilities; these vulnerabilities stem from service paths in the gbClientService that are not properly quoted. This could allow local attackers to execute arbitrary code and gain elevated privileges...

NETGATE Amiti Antivirus 代码问题漏洞

NETGATE Amiti Antivirus is a antivirus software developed by the Slovak company NETGATE. Version 25.0.640 of NETGATE Amiti Antivirus has a code vulnerability. This vulnerability stems from service paths in Windows service configurations that are not properly quoted, which may allow attackers to...

EUVD-2019-19384

NCP Secure Entry Client 9.2 contains an unquoted service path vulnerability in multiple Windows services that allows local users to potentially execute arbitrary code. Attackers can exploit the unquoted paths in services like ncprwsnt, rwsrsu, ncpclcfg, and NcpSec to inject malicious code that...

CVE-2019-25281 NCP_Secure_Entry_Client 9.2 - Unquoted Service Paths

NCP Secure Entry Client 9.2 contains an unquoted service path vulnerability in multiple Windows services that allows local users to potentially execute arbitrary code. Attackers can exploit the unquoted paths in services like ncprwsnt, rwsrsu, ncpclcfg, and NcpSec to inject malicious code that...

CVE-2019-25281

CVE-2019-25281 concerns NCP Secure Entry Client 9.2. The issue is an unquoted service path vulnerability in multiple Windows services (e.g., ncprwsnt, rwsrsu, ncpclcfg, NcpSec) that can be exploited to inject and execute code with LocalSystem privileges during service startup. Exploitation is des...