Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-14261

Malware in sbrugna...

5.3CVSS5.9AI score0.00356EPSS
Exploits0References4
NVD
NVD
added 2024/04/30 2:15 p.m.23 views

CVE-2024-23774

An issue was discovered in Quest KACE Agent for Windows 12.0.38 and 13.1.23.0. An unquoted Windows search path vulnerability exists in the KSchedulerSvc.exe and AMPTools.exe components. This allows local attackers to execute code of their choice with NT Authority\SYSTEM privileges...

7.8CVSS6.8AI score0.00444EPSS
Exploits0References2
NVD
NVD
added 2023/01/16 10:15 a.m.33 views

CVE-2022-4258

In multiple versions of HIMA PC based Software an unquoted Windows search path vulnerability might allow local users to gain privileges via a malicious .exe file and gain full access to the system...

7.8CVSS7.7AI score0.0021EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2019/06/29 2:10 a.m.19 views

Security Bulletin: IBM Cognos TM1 is affected by multiple vulnerabilities (CVE-2018-15494, CVE-2019-4245)

Summary Dojo Toolkit, used by IBM Cognos TM1, is vulnerable to cross-site scripting XSS . This issue has been addressed. A vulnerability exists where TM1 Server could allow a local user with specialized access to exploit an unquoted Windows search path vulnerability which could allow local users ...

9.8CVSS1AI score0.02611EPSS
Exploits2Affected Software1
OpenVAS
OpenVAS
added 2018/03/20 12:0 a.m.19 views

Panda Global Protection <= 17.0.1 Multiple Vulnerabilities

Panda Global Protection is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

7.8CVSS7.8AI score0.00342EPSS
Exploits1References2
CVE
CVE
added 2016/10/13 7:0 p.m.1098 views

CVE-2016-6935

Adobe Creative Cloud Desktop on Windows is affected by CVE-2016-6935 due to an unquoted Windows search path in versions prior to 3.8.0.310, enabling local privilege escalation via a Trojan horse executable placed in the SYSTEMDRIVE root. The advisory APSB16-34 recommends updating to 3.8.0.310 to ...

7.8CVSS7.6AI score0.00768EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2016/06/07 12:0 a.m.30 views

Symantec Endpoint Encryption Unquoted Windows Search Path Vulnerability

Symantec Endpoint Encryption SEE is prone to unquoted windows search path vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE=...

7.8CVSS7.9AI score0.00292EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2015/09/08 12:0 a.m.23 views

Dell SonicWall NetExtender Privilege Escalation Vulnerability - Windows

Dell SonicWall NetExtender is prone to a privilege escalation vulnerability. This VT has been deprecated and replaced by the VT SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

6.9CVSS9.7AI score0.02066EPSS
Exploits0References1
CVE
CVE
added 2015/08/26 7:0 p.m.54 views

CVE-2015-4173

Dell SonicWall NetExtender is affected by CVE-2015-4173, a local privilege-escalation due to an unquoted Windows search path in the autorun value. Affected as: NetExtender before 7.5.227 and 8.0.x before 8.0.238, used with SRA firmware before 7.5.1.2-40sv and 8.x before 8.0.0.3-23sv. Root cause: ...

6.9CVSS8.7AI score0.02066EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2015/01/27 11:0 a.m.63 views

CVE-2014-9646

Technical details for CVE-2014-9646 are not publicly provided in the connected documents. Monitor for updates.

4.6CVSS8.5AI score0.0026EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2014/08/25 12:0 a.m.11 views

PT-2014-6485

Name of the Vulnerable Software and Affected Versions PrivateTunnel versions prior to 3.0 OpenVPN Connect versions prior to 3.1 Description The issue allows local users to gain privileges via a crafted program.exe file in the %SYSTEMDRIVE% folder, due to an unquoted Windows search path...

6.9CVSS5.8AI score0.00951EPSS
Exploits2References10
CVE
CVE
added 2014/01/21 6:0 p.m.92 views

CVE-2013-2151

CVE-2013-2151 affects Red Hat Enterprise Virtualization (RHEV) 3 and 3.2. The vulnerability is an unquoted Windows search path flaw in the rhev-guest-tools (Windows guest tools) and related agent/service, enabling local users to escalate privileges via a crafted executable located in an unquoted ...

7.2CVSS8.7AI score0.00414EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2014/01/10 4:0 p.m.64 views

CVE-2013-5011

CVE-2013-5011 is an unquoted Windows search path vulnerability affecting the Symantec Endpoint Protection (SEP) client. The issue exists in SEP 11.x before 11.0.7.4 and 12.x before 12.1.2 RU2 (and Small Business Edition 12.x before 12.1.2 RU2), where an unquoted path in the SYSTEMDRIVE root could...

7.2CVSS8.4AI score0.00474EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2013/08/28 5:0 p.m.63 views

CVE-2013-2176

CVE-2013-2176 is an unquoted Windows search path vulnerability in the Red Hat Enterprise Virtualization Application Provisioning Tool (RHEV-APT) installed via rhev-guest-tools-iso (v3.2). The unquoted path could allow a local, unprivileged user to have a Trojan horse binary executed with SYSTEM p...

7.2CVSS8.7AI score0.00461EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2013/01/08 12:0 a.m.20 views

Symantec Enterprise Security Manager/Agent Privilege Escalation Vulnerability

Symantec Enterprise Security Manager/Agent is prone to a local privilege escalation vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

7.2CVSS9.3AI score0.00483EPSS
Exploits0References4
CVE
CVE
added 2006/08/23 10:0 p.m.42 views

CVE-2006-4315

CVE-2006-4315 describes an unquoted Windows search path vulnerability in multiple SSH Tectia products. Affects: SSH Tectia Client/Server/Connector 5.0.0 and 5.0.1, and Client/Server prior to 4.4.5; Manager 2.12 and earlier. Root cause: unquoted paths under Windows in the application startup chain...

7.2CVSS7AI score0.00332EPSS
Exploits0References4Affected Software4
CVE
CVE
added 2005/11/18 11:0 a.m.49 views

CVE-2005-2938

CVE-2005-2938 affects Apple iTunes for Windows (iTunesHelper.exe) prior to iTunes 6. The vulnerability is an unquoted Windows search path in iTunesHelper.exe, which could allow a local user to gain privileges by placing a malicious C:\program.exe. Affected versions include iTunes 4.7.1.30 and iTu...

7.2CVSS6.5AI score0.00386EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2005/11/18 11:0 a.m.55 views

CVE-2005-2940

CVE-2005-2940 describes an unquoted Windows search path vulnerability in Microsoft Antispyware 1.0.509 (Beta 1). Local users could gain privileges by placing a malicious file named program.exe in the C: drive, which could be executed by one of several Antispyware components: GIANTAntiSpywareMain....

7.2CVSS6.5AI score0.02339EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder