Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CVE
CVEadded 2026/02/06 4:41 p.m.6 views

CVE-2019-25304

CVE-2019-25304 affects SecurOS Enterprise 10.2, specifically the SecurosCtrlService which uses an unquoted service path at C:\Program Files (x86)\ISS\SecurOS\ during startup. This can allow local users to insert malicious code and execute with system-level privileges. Exploitation details and pub...

8.5CVSS5.6AI score0.00021EPSS
Exploits0References4
OSV
OSVadded 2026/02/03 3:16 p.m.1 views

CVE-2020-37100

Sync Breeze Enterprise 12.4.18 contains an unquoted service path vulnerability that allows local attackers to execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path by placing malicious executables in specific file system locations to hijack the...

7.8CVSS6.1AI score0.00018EPSS
Exploits1References3
ATTACKERKB
ATTACKERKBadded 2026/01/29 2:28 p.m.3 views

CVE-2020-37021

10-Strike Bandwidth Monitor 3.9 contains an unquoted service path vulnerability in multiple services that allows local attackers to escalate privileges. Attackers can place a malicious executable in specific file path locations to achieve privilege escalation to SYSTEM during service startup...

8.5CVSS5.9AI score0.00022EPSS
Exploits0References3Affected Software1
NVD
NVDadded 2026/01/21 6:16 p.m.4 views

CVE-2021-47867

WIN-PACK PRO4.8 contains an unquoted service path vulnerability in the ScheduleService that allows local users to potentially execute code with elevated system privileges. Attackers can exploit the unquoted path in 'C:\Program Files \WINPAKPRO\ScheduleService Service.exe' to inject malicious code...

8.5CVSS0.00023EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/12/31 12:0 a.m.1 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992834)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992834 advisory. In the Linux kernel, the following vulnerability has been resolved: ftrace: Fix NULL pointer dereference in isftracetrampoline when ftrace is dead ftracestartup does...

5.5CVSS6.1AI score0.00051EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2025/12/22 9:35 p.m.2 views

CVE-2023-53965 SOUND4 Server Service 4.1.102 Local Privilege Escalation via Unquoted Service Path

SOUND4 Server Service 4.1.102 contains an unquoted service path vulnerability that allows local non-privileged users to potentially execute code with elevated system privileges. Attackers can exploit the unquoted binary path by inserting malicious code in the system root path that could execute...

8.6CVSS6.7AI score0.00033EPSS
Exploits2References4
CVE
CVEadded 2018/04/10 3:0 p.m.51 views

CVE-2018-2406

CVE-2018-2406 affects SAP Crystal Reports Server OEM Edition (CRSE) startup path: unquoted Windows search path leads to local directory/path traversal. Versions 4.0, 4.10, 4.20, 4.30 are affected; local privilege elevation is indicated in connected CNVD entry. The vulnerability’s CVSS notes local...

5.3CVSS6.3AI score0.00071EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder