English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 146377 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.107303
Category:Windows
Title:Microsoft Windows Unquoted Path Vulnerability (SMB Login)
Summary:The script tries to detect Windows 'Uninstall' registry entries; and 'Services' using an unquoted path containing at least one whitespace.
Description:Summary:
The script tries to detect Windows 'Uninstall' registry entries
and 'Services' using an unquoted path containing at least one whitespace.

Vulnerability Insight:
If the path contains spaces and is not surrounded by quotation
marks, the Windows API has to guess where to find the referenced program. If e.g. a service is
using the following unquoted path:

C:\Program Files\Folder\service.exe

then a start of the service would first try to run:

C:\Program.exe

and if not found:

C:\Program Files\Folder\service.exe

afterwards. In this example the behavior allows a local attacker with low privileges and write
permissions on C:\ to place a malicious Program.exe which is then executed on a service/host
restart or during the uninstallation of a software.

NOTE: Currently only 'Services' using an unquoted path are reported as a vulnerability. The
'Uninstall' vulnerability requires an Administrator / User to actively uninstall the affected
software to trigger this vulnerability.

Vulnerability Impact:
A local attacker could gain elevated privileges by inserting an
executable file in the path of the affected service or uninstall entry.

Affected Software/OS:
Software installing an 'Uninstall' registry entry or 'Service'
on Microsoft Windows using an unquoted path containing at least one whitespace.

Solution:
Either put the listed vulnerable paths in quotation by manually
using the onboard Registry editor or contact your vendor to get an update for the specified
software that fixes this vulnerability.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2005-2936
BugTraq ID: 15448
http://www.securityfocus.com/bid/15448
http://www.idefense.com/application/poi/display?id=340&type=vulnerabilities
http://securitytracker.com/id?1015223
http://secunia.com/advisories/19358
http://www.vupen.com/english/advisories/2006/1057
Common Vulnerability Exposure (CVE) ID: CVE-2007-5618
BugTraq ID: 28276
http://www.securityfocus.com/bid/28276
BugTraq ID: 28289
http://www.securityfocus.com/bid/28289
Bugtraq: 20080318 VMSA-2008-0005 Updated VMware Workstation, VMware Player, VMware Server, VMware ACE, and VMware Fusion resolve critical security issues (Google Search)
http://www.securityfocus.com/archive/1/489739/100/0/threaded
http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065902.html
http://lists.vmware.com/pipermail/security-announce/2008/000008.html
http://secunia.com/advisories/26890
http://www.vupen.com/english/advisories/2007/3229
http://www.vupen.com/english/advisories/2008/0905/references
Common Vulnerability Exposure (CVE) ID: CVE-2009-2761
http://archives.neohapsis.com/archives/bugtraq/2009-01/0146.html
http://blog.zoller.lu/2009/01/tzo-2009-2-avira-antivir-priviledge.html
http://www.osvdb.org/55647
http://www.vupen.com/english/advisories/2008/3130
XForce ISS Database: avira-createprocess-privilege-escalation(46568)
https://exchange.xforce.ibmcloud.com/vulnerabilities/46568
Common Vulnerability Exposure (CVE) ID: CVE-2012-4350
BugTraq ID: 56915
http://www.securityfocus.com/bid/56915
http://www.securitytracker.com/id?1027874
Common Vulnerability Exposure (CVE) ID: CVE-2013-0513
XForce ISS Database: appscan-svc-path-priv-esc(82594)
https://exchange.xforce.ibmcloud.com/vulnerabilities/82594
Common Vulnerability Exposure (CVE) ID: CVE-2013-1092
Common Vulnerability Exposure (CVE) ID: CVE-2013-1609
BugTraq ID: 58617
http://www.securityfocus.com/bid/58617
Common Vulnerability Exposure (CVE) ID: CVE-2013-1610
BugTraq ID: 61489
http://www.securityfocus.com/bid/61489
Common Vulnerability Exposure (CVE) ID: CVE-2013-2151
60473
http://www.securityfocus.com/bid/60473
RHSA-2013:0925
http://rhn.redhat.com/errata/RHSA-2013-0925.html
enterprise-cve20132151-priv-esc(84868)
https://exchange.xforce.ibmcloud.com/vulnerabilities/84868
Common Vulnerability Exposure (CVE) ID: CVE-2013-2152
60475
http://www.securityfocus.com/bid/60475
RHSA-2013:0924
http://rhn.redhat.com/errata/RHSA-2013-0924.html
enterprise-cve20132152-priv-esc(84866)
https://exchange.xforce.ibmcloud.com/vulnerabilities/84866
https://bugzilla.redhat.com/show_bug.cgi?id=971172
Common Vulnerability Exposure (CVE) ID: CVE-2013-2176
RedHat Security Advisories: RHSA-2013:1122
http://rhn.redhat.com/errata/RHSA-2013-1122.html
Common Vulnerability Exposure (CVE) ID: CVE-2013-2231
RHSA-2013:1100
http://rhn.redhat.com/errata/RHSA-2013-1100.html
RHSA-2013:1101
http://rhn.redhat.com/errata/RHSA-2013-1101.html
https://bugzilla.redhat.com/show_bug.cgi?id=980757
Common Vulnerability Exposure (CVE) ID: CVE-2013-5011
BugTraq ID: 64130
http://www.securityfocus.com/bid/64130
XForce ISS Database: symantec-endpoint-cve20135011-priv-esc(90226)
https://exchange.xforce.ibmcloud.com/vulnerabilities/90226
Common Vulnerability Exposure (CVE) ID: CVE-2013-6182
BugTraq ID: 64520
http://www.securityfocus.com/bid/64520
Bugtraq: 20131224 ESA-2013-092: EMC Replication Manager Unquoted File Path Enumeration Vulnerability (Google Search)
http://archives.neohapsis.com/archives/bugtraq/2013-12/0139.html
http://osvdb.org/101430
http://www.securitytracker.com/id/1029536
Common Vulnerability Exposure (CVE) ID: CVE-2013-6773
http://www.splunk.com/view/SP-CAAAHXG
Common Vulnerability Exposure (CVE) ID: CVE-2014-0759
http://ics-cert.us-cert.gov/advisories/ICSA-14-058-01
Common Vulnerability Exposure (CVE) ID: CVE-2014-4634
Bugtraq: 20141230 ESA-2014-179: EMC Replication Manager and EMC AppSync Unquoted Service Path Enumeration Vulnerability (Google Search)
http://archives.neohapsis.com/archives/bugtraq/2014-12/0170.html
Common Vulnerability Exposure (CVE) ID: CVE-2014-5455
http://www.exploit-db.com/exploits/34037
HPdes Security Advisory: HPSBGN3551
https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05325943
http://packetstormsecurity.com/files/127439/OpenVPN-Private-Tunnel-Privilege-Escalation.html
http://www.zeroscience.mk/en/vulnerabilities/ZSL-2014-5192.php
https://github.com/CVEProject/cvelist/pull/3909
https://github.com/CVEProject/cvelist/pull/3909/commits/ace34f1cf94602f31760d3eb7ae68e17df8f914d
http://osvdb.org/show/osvdb/109007
Common Vulnerability Exposure (CVE) ID: CVE-2014-9646
http://security.gentoo.org/glsa/glsa-201502-13.xml
Common Vulnerability Exposure (CVE) ID: CVE-2015-0884
CERT/CC vulnerability note: VU#632140
http://www.kb.cert.org/vuls/id/632140
http://jvn.jp/vu/JVNVU99205169/index.html
http://www.securitytracker.com/id/1031825
Common Vulnerability Exposure (CVE) ID: CVE-2015-1484
BugTraq ID: 73925
http://www.securityfocus.com/bid/73925
http://www.securitytracker.com/id/1032133
Common Vulnerability Exposure (CVE) ID: CVE-2015-2789
BugTraq ID: 73432
http://www.securityfocus.com/bid/73432
http://www.exploit-db.com/exploits/36390
http://packetstormsecurity.com/files/130840/Foxit-Reader-7.0.6.1126-Privilege-Escalation.html
http://www.zeroscience.mk/en/vulnerabilities/ZSL-2015-5235.php
http://www.securitytracker.com/id/1031879
Common Vulnerability Exposure (CVE) ID: CVE-2015-3987
BugTraq ID: 74685
http://www.securityfocus.com/bid/74685
http://www.securitytracker.com/id/1032244
Common Vulnerability Exposure (CVE) ID: CVE-2015-4173
Bugtraq: 20150824 Dell SonicWall NetExtender Unquoted Autorun Privilege Escalation (Google Search)
http://www.securityfocus.com/archive/1/536303/100/0/threaded
http://packetstormsecurity.com/files/133302/Dell-SonicWall-NetExtender-7.5.215-Privilege-Escalation.html
http://www.securitytracker.com/id/1033417
Common Vulnerability Exposure (CVE) ID: CVE-2015-7866
HPdes Security Advisory: HPSBHF03545
https://h20565.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04971867
http://www.securitytracker.com/id/1034175
Common Vulnerability Exposure (CVE) ID: CVE-2015-8156
BugTraq ID: 90050
http://www.securityfocus.com/bid/90050
Common Vulnerability Exposure (CVE) ID: CVE-2015-8988
Common Vulnerability Exposure (CVE) ID: CVE-2016-15003
https://vuldb.com/?id.97204
https://www.exploit-db.com/exploits/39803/
https://youtu.be/r06VwwJ9J4M
Common Vulnerability Exposure (CVE) ID: CVE-2016-3161
BugTraq ID: 93251
http://www.securityfocus.com/bid/93251
Common Vulnerability Exposure (CVE) ID: CVE-2016-4158
Common Vulnerability Exposure (CVE) ID: CVE-2016-5793
BugTraq ID: 93046
http://www.securityfocus.com/bid/93046
https://ics-cert.us-cert.gov/advisories/ICSA-16-264-01
Common Vulnerability Exposure (CVE) ID: CVE-2016-5852
Common Vulnerability Exposure (CVE) ID: CVE-2016-6803
BugTraq ID: 94418
http://www.securityfocus.com/bid/94418
http://www.securitytracker.com/id/1037015
Common Vulnerability Exposure (CVE) ID: CVE-2016-6935
BugTraq ID: 93489
http://www.securityfocus.com/bid/93489
Common Vulnerability Exposure (CVE) ID: CVE-2016-7165
BugTraq ID: 94158
http://www.securityfocus.com/bid/94158
http://securityaffairs.co/wordpress/53266/security/cve-2016-7165-siemens.html
https://ics-cert.us-cert.gov/advisories/ICSA-16-313-02
Common Vulnerability Exposure (CVE) ID: CVE-2016-8102
BugTraq ID: 95010
http://www.securityfocus.com/bid/95010
Common Vulnerability Exposure (CVE) ID: CVE-2016-8225
BugTraq ID: 95842
http://www.securityfocus.com/bid/95842
Common Vulnerability Exposure (CVE) ID: CVE-2016-8769
BugTraq ID: 94403
http://www.securityfocus.com/bid/94403
https://www.exploit-db.com/exploits/40807/
http://www.security-geek.in/2017/02/07/0day-discovery-system-level-access-by-privilege-escalation-of-huawei-manufactured-airtel-photon-dongles/
Common Vulnerability Exposure (CVE) ID: CVE-2016-9356
BugTraq ID: 94891
http://www.securityfocus.com/bid/94891
https://ics-cert.us-cert.gov/advisories/ICSA-16-348-02
Common Vulnerability Exposure (CVE) ID: CVE-2017-1000475
https://www.exploit-db.com/exploits/48044
https://github.com/lajarajorge/CVE-2017-1000475/blob/master/README.md
Common Vulnerability Exposure (CVE) ID: CVE-2017-12730
BugTraq ID: 100815
http://www.securityfocus.com/bid/100815
https://ics-cert.us-cert.gov/advisories/ICSA-17-255-01
Common Vulnerability Exposure (CVE) ID: CVE-2017-14019
BugTraq ID: 101483
http://www.securityfocus.com/bid/101483
https://ics-cert.us-cert.gov/advisories/ICSA-17-290-01
Common Vulnerability Exposure (CVE) ID: CVE-2017-14030
BugTraq ID: 102494
http://www.securityfocus.com/bid/102494
https://ics-cert.us-cert.gov/advisories/ICSA-18-011-02
Common Vulnerability Exposure (CVE) ID: CVE-2017-15383
https://cxsecurity.com/issue/WLB-2016110092
https://packetstormsecurity.com/files/139658/Nero-7.10.1.0-Privilege-Escalation.html
Common Vulnerability Exposure (CVE) ID: CVE-2017-3005
BugTraq ID: 97553
http://www.securityfocus.com/bid/97553
http://www.securitytracker.com/id/1038229
Common Vulnerability Exposure (CVE) ID: CVE-2017-3141
BugTraq ID: 99089
http://www.securityfocus.com/bid/99089
https://www.exploit-db.com/exploits/42121/
https://security.gentoo.org/glsa/201708-01
http://www.securitytracker.com/id/1038693
Common Vulnerability Exposure (CVE) ID: CVE-2017-3751
Common Vulnerability Exposure (CVE) ID: CVE-2017-3756
BugTraq ID: 100305
http://www.securityfocus.com/bid/100305
Common Vulnerability Exposure (CVE) ID: CVE-2017-3757
Common Vulnerability Exposure (CVE) ID: CVE-2017-5873
Common Vulnerability Exposure (CVE) ID: CVE-2017-6005
http://justpentest.blogspot.in/2017/07/dell-unquoted-service-path-local.html
Common Vulnerability Exposure (CVE) ID: CVE-2017-7180
https://www.exploit-db.com/exploits/42141/
Common Vulnerability Exposure (CVE) ID: CVE-2017-9247
Common Vulnerability Exposure (CVE) ID: CVE-2017-9644
BugTraq ID: 100454
http://www.securityfocus.com/bid/100454
https://www.exploit-db.com/exploits/42542/
https://ics-cert.us-cert.gov/advisories/ICSA-17-234-01
Common Vulnerability Exposure (CVE) ID: CVE-2018-0594
BugTraq ID: 104563
http://www.securityfocus.com/bid/104563
http://jvn.jp/en/jp/JVN91151862/index.html
https://blogs.technet.microsoft.com/srd/2018/04/04/triaging-a-dll-planting-vulnerability/
Common Vulnerability Exposure (CVE) ID: CVE-2018-0595
Common Vulnerability Exposure (CVE) ID: CVE-2018-11063
https://www.dell.com/support/article/us/en/19/sln313398/dell-wyse-management-suite-multiple-unquoted-service-path-vulnerabilities?lang=en
Common Vulnerability Exposure (CVE) ID: CVE-2018-20341
Common Vulnerability Exposure (CVE) ID: CVE-2018-2406
BugTraq ID: 103719
http://www.securityfocus.com/bid/103719
https://launchpad.support.sap.com/#/notes/2560132
Common Vulnerability Exposure (CVE) ID: CVE-2018-3668
Common Vulnerability Exposure (CVE) ID: CVE-2018-3683
Common Vulnerability Exposure (CVE) ID: CVE-2018-3684
Common Vulnerability Exposure (CVE) ID: CVE-2018-3687
Common Vulnerability Exposure (CVE) ID: CVE-2018-3688
Common Vulnerability Exposure (CVE) ID: CVE-2018-5470
BugTraq ID: 103182
http://www.securityfocus.com/bid/103182
https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02
Common Vulnerability Exposure (CVE) ID: CVE-2018-6016
http://seclists.org/fulldisclosure/2018/Mar/21
Common Vulnerability Exposure (CVE) ID: CVE-2018-6321
http://seclists.org/fulldisclosure/2018/Mar/25
Common Vulnerability Exposure (CVE) ID: CVE-2018-6384
https://www.on-x.com/sites/default/files/on-x_-_security_advisory_-_nsclient_-_cve-2018-6384.pdf
Common Vulnerability Exposure (CVE) ID: CVE-2019-11093
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00234.html
Common Vulnerability Exposure (CVE) ID: CVE-2019-14599
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00299.html
Common Vulnerability Exposure (CVE) ID: CVE-2019-14685
http://seclists.org/fulldisclosure/2019/Aug/26
http://packetstormsecurity.com/files/154200/Trend-Maximum-Security-2019-Unquoted-Search-Path.html
https://medium.com/sidechannel-br/vulnerabilidade-no-trend-micro-maximum-security-2019-permite-a-escala%C3%A7%C3%A3o-de-privil%C3%A9gios-no-windows-471403d53b68
Common Vulnerability Exposure (CVE) ID: CVE-2019-17658
Common Vulnerability Exposure (CVE) ID: CVE-2019-20362
https://help.teradici.com/s/article/unquoted-service-path-vulnerability-windows-agent-client-19-08-earlier
Common Vulnerability Exposure (CVE) ID: CVE-2019-7201
Common Vulnerability Exposure (CVE) ID: CVE-2019-7590
BugTraq ID: 109307
http://www.securityfocus.com/bid/109307
https://gallery.technet.microsoft.com/scriptcenter/Windows-Unquoted-Service-190f0341
https://packetstormsecurity.com/files/152128/exacqVision-9.8-Unquoted-Service-Path-Privilege-Escalation.html
https://www.us-cert.gov/ics/advisories/icsa-19-199-01
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5515.php
Common Vulnerability Exposure (CVE) ID: CVE-2020-0507
Common Vulnerability Exposure (CVE) ID: CVE-2020-0546
Common Vulnerability Exposure (CVE) ID: CVE-2020-13884
https://github.com/hessandrew/CVE-2020-13884
Common Vulnerability Exposure (CVE) ID: CVE-2020-15261
https://github.com/veyon/veyon/security/advisories/GHSA-c8cc-x786-hqqp
http://packetstormsecurity.com/files/162873/Veyon-4.4.1-Unquoted-Service-Path.html
https://www.exploit-db.com/exploits/48246
https://www.exploit-db.com/exploits/49925
https://github.com/veyon/veyon/commit/f231ec511b9a09f43f49b2c7bb7c60b8046276b1
https://github.com/veyon/veyon/issues/657
Common Vulnerability Exposure (CVE) ID: CVE-2020-22809
https://www.exploit-db.com/exploits/48306
Common Vulnerability Exposure (CVE) ID: CVE-2020-28209
https://www.se.com/ww/en/download/document/SEVD-2020-315-04/
Common Vulnerability Exposure (CVE) ID: CVE-2020-35152
https://github.com/cloudflare/advisories/security/advisories/GHSA-qc57-v5q8-f22h
Common Vulnerability Exposure (CVE) ID: CVE-2020-5147
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2020-0023
http://packetstormsecurity.com/files/163857/SonicWall-NetExtender-10.2.0.300-Unquoted-Service-Path.html
Common Vulnerability Exposure (CVE) ID: CVE-2020-5569
https://jvn.jp/en/jp/JVN13467854/index.html
https://www.canvio.jp/news/20200420.htm
Common Vulnerability Exposure (CVE) ID: CVE-2020-7252
Common Vulnerability Exposure (CVE) ID: CVE-2020-7316
https://kc.mcafee.com/corporate/index?page=content&id=SB10330
Common Vulnerability Exposure (CVE) ID: CVE-2020-7331
https://kc.mcafee.com/corporate/index?page=content&id=SB10335
Common Vulnerability Exposure (CVE) ID: CVE-2020-8326
https://iknow.lenovo.com.cn/detail/dc_190088.html
Common Vulnerability Exposure (CVE) ID: CVE-2020-9292
https://fortiguard.com/advisory/FG-IR-20-021
Common Vulnerability Exposure (CVE) ID: CVE-2021-0112
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00506.html
Common Vulnerability Exposure (CVE) ID: CVE-2021-21078
https://helpx.adobe.com/security/products/creative-cloud/apsb21-18.html
Common Vulnerability Exposure (CVE) ID: CVE-2021-23197
https://security.gallagher.com/Security-Advisories/CVE-2021-23197
Common Vulnerability Exposure (CVE) ID: CVE-2021-23879
https://kc.mcafee.com/corporate/index?page=content&id=SB10351
Common Vulnerability Exposure (CVE) ID: CVE-2021-25269
https://www.sophos.com/en-us/security-advisories/sophos-sa-20211126-ixa-hmpa-local-dos
Common Vulnerability Exposure (CVE) ID: CVE-2021-27608
https://launchpad.support.sap.com/#/notes/3039649
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=573801649
Common Vulnerability Exposure (CVE) ID: CVE-2021-29218
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn04233en_us
Common Vulnerability Exposure (CVE) ID: CVE-2021-33095
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00569.html
Common Vulnerability Exposure (CVE) ID: CVE-2021-35230
https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35230
Common Vulnerability Exposure (CVE) ID: CVE-2021-35231
https://documentation.solarwinds.com/en/success_center/kss/content/release_notes/kss_9-8_release_notes.htm
https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35231
Common Vulnerability Exposure (CVE) ID: CVE-2021-35469
http://support.lexmark.com/alerts/
http://support.lexmark.com/index?id=TE952&page=content&locale=en&userlocale=EN_US
Common Vulnerability Exposure (CVE) ID: CVE-2021-37363
https://www.exploit-db.com/exploits/50449
https://www.gestionaleopen.org/
Common Vulnerability Exposure (CVE) ID: CVE-2021-37364
https://sourceforge.net/projects/open-clinic/
https://sourceforge.net/projects/open-clinic/files/latest/download
https://www.exploit-db.com/exploits/50448
Common Vulnerability Exposure (CVE) ID: CVE-2021-42563
https://www.ni.com/en-us/support/documentation/supplemental/21/unquoted-service-path-in-ni-service-locator.html
Common Vulnerability Exposure (CVE) ID: CVE-2021-43454
https://exchange.xforce.ibmcloud.com/vulnerabilities/196532
https://github.com/M507/Miner
https://www.exploit-db.com/exploits/49549
Common Vulnerability Exposure (CVE) ID: CVE-2021-43455
https://exchange.xforce.ibmcloud.com/vulnerabilities/197919
https://www.exploit-db.com/exploits/49630
Common Vulnerability Exposure (CVE) ID: CVE-2021-43456
https://exchange.xforce.ibmcloud.com/vulnerabilities/192729
https://www.exploit-db.com/exploits/49203
Common Vulnerability Exposure (CVE) ID: CVE-2021-43457
https://exchange.xforce.ibmcloud.com/vulnerabilities/197938
https://www.exploit-db.com/exploits/49632
Common Vulnerability Exposure (CVE) ID: CVE-2021-43458
https://exchange.xforce.ibmcloud.com/vulnerabilities/198151
https://www.exploit-db.com/exploits/49641
Common Vulnerability Exposure (CVE) ID: CVE-2021-43460
https://exchange.xforce.ibmcloud.com/vulnerabilities/193324
https://www.exploit-db.com/exploits/49248
Common Vulnerability Exposure (CVE) ID: CVE-2021-43463
https://exchange.xforce.ibmcloud.com/vulnerabilities/198746
https://www.exploit-db.com/exploits/49706
Common Vulnerability Exposure (CVE) ID: CVE-2021-45819
https://hansesecure.de/2021/12/vulnerability-wordline/?lang=en
Common Vulnerability Exposure (CVE) ID: CVE-2021-46443
Common Vulnerability Exposure (CVE) ID: CVE-2022-2147
https://github.com/cloudflare/advisories/security/advisories/GHSA-m6w8-3pf9-p68r
Common Vulnerability Exposure (CVE) ID: CVE-2022-23909
http://packetstormsecurity.com/files/166574/Sherpa-Connector-Service-2020.2.20328.2050-Unquoted-Service-Path.html
https://github.com/netsectuna/CVE-2022-23909
Common Vulnerability Exposure (CVE) ID: CVE-2022-25031
https://hansesecure.de/2022/02/vulnerability-in-remote-desktop-commander-suite-agent/?lang=en
https://www.rdpsoft.com/uqspvuln/
Common Vulnerability Exposure (CVE) ID: CVE-2022-26634
https://cxsecurity.com/issue/WLB-2022020111
https://www.exploit-db.com/exploits/50765
Common Vulnerability Exposure (CVE) ID: CVE-2022-27050
https://github.com/ycdxsb/Vuln/tree/main/BitComet-Unquoted-Service-Path
Common Vulnerability Exposure (CVE) ID: CVE-2022-27052
https://github.com/ycdxsb/Vuln/tree/main/FreeFTPd-Unquoted-Service-Path
Common Vulnerability Exposure (CVE) ID: CVE-2022-27088
https://hansesecure.de/2022/03/schwachstelle-in-dsm-remote/
Common Vulnerability Exposure (CVE) ID: CVE-2022-27089
https://hansesecure.de/2022/03/schwachstelle-in-fujitsu-plugfree-network/
Common Vulnerability Exposure (CVE) ID: CVE-2022-27092
Common Vulnerability Exposure (CVE) ID: CVE-2022-27094
https://www.exploit-db.com/exploits/50817
Common Vulnerability Exposure (CVE) ID: CVE-2022-27095
https://www.exploit-db.com/exploits/50815
Common Vulnerability Exposure (CVE) ID: CVE-2022-29320
https://www.exploit-db.com/exploits/50859
Common Vulnerability Exposure (CVE) ID: CVE-2022-31591
https://launchpad.support.sap.com/#/notes/3167430
https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html
Common Vulnerability Exposure (CVE) ID: CVE-2022-33035
https://github.com/ycdxsb/Vuln/blob/main/Xlpd-Unquoted-Service-Path/XLpd-Unquoted-Service-Path.md
https://www.netsarang.com/en/xlpd-update-history/
Common Vulnerability Exposure (CVE) ID: CVE-2022-35292
https://launchpad.support.sap.com/#/notes/3223392
Common Vulnerability Exposure (CVE) ID: CVE-2022-35899
https://github.com/AngeloPioAmirante/CVE-2022-35899
https://packetstormsecurity.com/files/167763/Asus-GameSDK-1.0.0.4-Unquoted-Service-Path.html
https://www.exploit-db.com/exploits/50985
Common Vulnerability Exposure (CVE) ID: CVE-2022-37197
https://www.exploit-db.com/exploits/51029
Common Vulnerability Exposure (CVE) ID: CVE-2022-4429
https://support.norton.com/sp/static/external/tools/security-advisories.html
Common Vulnerability Exposure (CVE) ID: CVE-2022-44264
https://twitter.com/obikenobi1/status/1618149448919699458?cxt=HHwWhMDShbeW6fQsAAAA
https://www.chairi.it/cve/CVE-2022-44264.txt
Common Vulnerability Exposure (CVE) ID: CVE-2023-24671
https://medium.com/@SumitVerma101/windows-privilege-escalation-part-1-unquoted-service-path-c7a011a8d8ae
https://packetstormsecurity.com/files/171300/VX-Search-13.8-Unquoted-Service-Path.html
Common Vulnerability Exposure (CVE) ID: CVE-2023-26911
http://asus.com
http://setupasusservices.com
https://irradiate.com.au/blog/CVE-2023-26911
Common Vulnerability Exposure (CVE) ID: CVE-2023-31747
http://filmora.com
http://wondershare.com
https://packetstormsecurity.com/files/172464/Filmora-12-Build-1.0.0.7-Unquoted-Service-Path.html
Common Vulnerability Exposure (CVE) ID: CVE-2023-3438
https://kcm.trellix.com/corporate/index?page=content&id=SB10404
Common Vulnerability Exposure (CVE) ID: CVE-2023-36658
https://docs.opswat.com/mdkiosk
https://docs.opswat.com/mdkiosk/release-notes/cve-2023-36658
Common Vulnerability Exposure (CVE) ID: CVE-2023-37537
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0108018
Common Vulnerability Exposure (CVE) ID: CVE-2023-6631
https://subnet.com/contact/
https://www.cisa.gov/news-events/ics-advisories/icsa-23-353-01
Common Vulnerability Exposure (CVE) ID: CVE-2023-7043
https://support.eset.com/en/ca8602
Common Vulnerability Exposure (CVE) ID: CVE-2024-1618
https://www.incibe.es/en/incibe-cert/notices/aviso/unquoted-item-or-search-path-vulnerability-faronics-deep-freeze-server
Common Vulnerability Exposure (CVE) ID: CVE-2024-25552
https://cert.vde.com/en/advisories/VDE-2024-018
CopyrightCopyright (C) 2018 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.