Lucene search
K

29 matches found

EUVD
EUVD
added 2026/01/27 6:51 p.m.5 views

EUVD-2020-30872

Wondershare Driver Install Service contains an unquoted service path vulnerability in the ElevationService executable that allows local attackers to potentially inject malicious code. Attackers can exploit the unquoted path to replace the service binary with a malicious executable, enabling...

8.5CVSS5.9AI score0.00185EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-6092

Malware in sbrugna...

7.8CVSS7.9AI score0.00574EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-20151

Malware in sbrugna...

8.8CVSS7.3AI score0.01413EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.15 views

EUVD-2021-33051

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.00409EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-32393

Malicious code in bioql PyPI...

9CVSS7.1AI score0.0101EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-44077

Malicious code in bioql PyPI...

7.8CVSS6.6AI score0.0017EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 6:15 p.m.6 views

EUVD-2025-32345

An unquoted search path or element vulnerability has been reported to affect NetBak Replicator. If a local attacker gains a user account, they can then exploit the vulnerability to execute unauthorized code or commands. We have already fixed the vulnerability in the following version: NetBak...

8.5CVSS6.5AI score0.00205EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/08/25 8:1 a.m.10 views

CVE-2025-5191 Unquoted Search Path Vulnerability in the Utility for Industrial Computers (Windows)

An Unquoted Search Path vulnerability has been identified in the utility for Moxa’s industrial computers Windows. Due to the unquoted path configuration in the SerialInterfaceService.exe utility, a local attacker with limited privileges could place a malicious executable in a higher-priority...

7.3CVSS0.00137EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2025/08/22 12:0 a.m.15 views

JVN#75211379: Western Digital Kitfox registers a Windows service with an unquoted file path

Western Digital Kitfox for Windows provided by Western Digital Corporation contains the following vulnerability. Unquoted search path or element CWE-428 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Base Score 8.4 CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H Base Score 6.7...

8.4CVSS7.5AI score0.00155EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/06/12 5:12 p.m.17 views

CVE-2024-2747

CWE-428: Unquoted search path or element vulnerability exists in Easergy Studio, which could cause privilege escalation when a valid user replaces a trusted file name on the system and reboots the machine...

7.8CVSS7.4AI score0.00166EPSS
Exploits0References1
NVD
NVD
added 2024/05/03 11:15 a.m.12 views

CVE-2024-4461

Unquoted path or search item vulnerability in SugarSync versions prior to 4.1.3 for Windows. This misconfiguration could allow an unauthorized local user to inject arbitrary code into the unquoted service path, resulting in privilege escalation...

7.8CVSS7.7AI score0.0017EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/01/31 12:51 p.m.29 views

CVE-2023-7043 Unquoted path privilege vulnerability in ESET products for Windows

Unquoted service path in ESET products allows to drop a prepared program to a specific location and run on boot with the NT AUTHORITY\NetworkService permissions...

3.3CVSS6.6AI score0.00282EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/11/14 7:4 p.m.24 views

CVE-2023-25075

Unquoted search path in the installer for some Intel Server Configuration Utility software before version 16.0.9 may allow an authenticated user to potentially enable escalation of privilege via local access...

6.7CVSS8AI score0.00191EPSS
Exploits0References1
NVD
NVD
added 2021/11/18 7:15 p.m.22 views

CVE-2021-23197

Unquoted service path vulnerability in the Gallagher Controller Service allows an unprivileged user to execute arbitrary code as the account that runs the Controller Service. This issue affects: Gallagher Command Centre 8.50 versions prior to 8.50.2048 MR3 ;...

7.8CVSS0.00261EPSS
Exploits0References1
CVE
CVE
added 2018/04/10 3:0 p.m.56 views

CVE-2018-2406

CVE-2018-2406 affects SAP Crystal Reports Server OEM Edition (CRSE) startup path: unquoted Windows search path leads to local directory/path traversal. Versions 4.0, 4.10, 4.20, 4.30 are affected; local privilege elevation is indicated in connected CNVD entry. The vulnerability’s CVSS notes local...

5.3CVSS6.3AI score0.00356EPSS
Exploits0References3Affected Software1
OpenVAS
OpenVAS
added 2018/03/23 12:0 a.m.2894 views

Microsoft Windows Unquoted Path Vulnerability (SMB Login)

The script tries to detect Windows SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only include"pluginfeedinfo.inc"; ifdescription...

9.8CVSS6.8AI score0.0513EPSS
Exploits49References5
CVE
CVE
added 2018/03/12 9:0 p.m.49 views

CVE-2018-6321

CVE-2018-6321 : Connected sources confirm a local privilege escalation in Panda Global Protection 17.0.1, via an unquoted Windows search path in the panda_url_filtering service. The vulnerability is triggered by placing a malicious artefact, allowing a local user to gain higher privileges. Root c...

7.8CVSS7.6AI score0.00342EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2016/09/24 10:0 a.m.19 views

CVE-2016-5793

Unquoted Windows search path vulnerability in Moxa Active OPC Server before 2.4.19 allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory...

8.5AI score0.0038EPSS
Exploits0References2
CVE
CVE
added 2015/11/24 8:0 p.m.75 views

CVE-2015-7866

CVE-2015-7866 describes an unquoted Windows search path vulnerability in the NVIDIA GPU graphics driver control panel component nvSmartMaxApp.exe. A local attacker could exploit this to escalate privileges, demonstrated by using a Trojan horse named C:\Program.exe. The affected products are NVIDI...

7.2CVSS8.7AI score0.00465EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2015/04/22 10:59 a.m.22 views

CVE-2015-1484

Unquoted Windows search path vulnerability in the agent in Symantec Workspace Streaming SWS 6.1 before SP8 MP2 HF7 and 7.5 before SP1 HF4, when AppMgrService.exe is configured as a service, allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory, as...

6.9CVSS6.5AI score0.00446EPSS
Exploits0References3
Rows per page
Query Builder