Vulnerabilities > Unquoted Search Path or Element
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-31 | CVE-2022-27964 | Unquoted Search Path or Element vulnerability in Netsarang Xmanager 3.0.127/3.0.218/4.0.165 Xmanager v7.0.0096 and below contains a binary hijack vulnerability which allows attackers to execute arbitrary code via a crafted .exe file. | 6.5 |
| 2022-03-31 | CVE-2022-27965 | Unquoted Search Path or Element vulnerability in Netsarang Xlpd 7.0.0094 Xlpd v7.0.0094 and below contains a binary hijack vulnerability which allows attackers to execute arbitrary code via a crafted .exe file. | 6.5 |
| 2022-03-31 | CVE-2022-27966 | Unquoted Search Path or Element vulnerability in Netsarang Xshell 7 Xshell v7.0.0099 and below contains a binary hijack vulnerability which allows attackers to execute arbitrary code via a crafted .exe file. | 6.5 |
| 2022-03-17 | CVE-2022-0237 | Unquoted Search Path or Element vulnerability in Rapid7 Insight Agent Rapid7 Insight Agent versions 3.1.2.38 and earlier suffer from a privilege escalation vulnerability, whereby an attacker can hijack the flow of execution due to an unquoted argument to the runas.exe command used by the ir_agent.exe component, resulting in elevated rights and persistent access to the machine. | 7.8 |
| 2022-03-03 | CVE-2021-45819 | Unquoted Search Path or Element vulnerability in Wordline Hidccemonitorsvc Wordline HIDCCEMonitorSVC before v5.2.4.3 contains an unquoted service path which allows attackers to escalate privileges to the system level. | 7.8 |
| 2022-03-03 | CVE-2022-25031 | Unquoted Search Path or Element vulnerability in Rdpsoft Remote Desktop Commander Suite Agent Remote Desktop Commander Suite Agent before v4.8 contains an unquoted service path which allows attackers to escalate privileges to the system level. | 7.8 |
| 2022-02-17 | CVE-2021-46368 | Unquoted Search Path or Element vulnerability in Trigonesoft Remote System Monitor 3.61 TRIGONE Remote System Monitor 3.61 is vulnerable to an unquoted path service allowing local users to launch processes with elevated privileges. | 7.8 |
| 2022-02-04 | CVE-2021-29218 | Unquoted Search Path or Element vulnerability in HPE products A local unquoted search path security vulnerability has been identified in HPE Agentless Management Service for Windows version(s): Prior to 1.44.0.0, 10.96.0.0. | 6.7 |
| 2022-01-11 | CVE-2021-45460 | Unquoted Search Path or Element vulnerability in Siemens Sicam PQ Analyzer Firmware 3.11 A vulnerability has been identified in SICAM PQ Analyzer (All versions < V3.18). | 8.1 |
| 2021-11-26 | CVE-2021-25269 | Unquoted Search Path or Element vulnerability in Sophos products A local administrator could prevent the HMPA service from starting despite tamper protection using an unquoted service path vulnerability in the HMPA component of Sophos Intercept X Advanced and Sophos Intercept X Advanced for Server before version 2.0.23, as well as Sophos Exploit Prevention before version 3.8.3. | 4.4 |