Unquoted Search Path or Element

The product uses a search path that contains an unquoted element, in which the element contains whitespace or other separators. This can cause the product to access resources in a parent path.

CVEs (426)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-31226 1Lizardbyte 1Sunshine Sep 11, 2025 May 16, 2024 N/A· v4 2.9 LOW· v3 N/A· v2 Sunshine is a self-hosted game stream host for Moonlight. Users who ran Sunshine versions 0.17.0 through 0.22.2 as a service on Windows may be impacted when terminating the service if an attacked placed a file named `C:\...Show more Sunshine is a self-hosted game stream host for Moonlight. Users who ran Sunshine versions 0.17.0 through 0.22.2 as a service on Windows may be impacted when terminating the service if an attacked placed a file named `C:\Program.exe`, `C:\Program.bat`, or `C:\Program.cmd` on the user's computer. This attack vector isn't exploitable unless the user has manually loosened ACLs on the system drive. If the user's system locale is not English, then the name of the executable will likely vary. Version 0.23.0 contains a patch for the issue. Some workarounds are available. One may identify and block potentially malicious software executed path interception by using application control tools, like Windows Defender Application Control, AppLocker, or Software Restriction Policies where appropriate. Alternatively, ensure that proper permissions and directory access control are set to deny users the ability to write files to the top-level directory `C:`. Require that all executables be placed in write-protected directories.Show less
CVE-2024-3640 - - Nov 21, 2024 May 16, 2024 7.0 HIGH· v4 N/A· v3 N/A· v2 An unquoted executable path exists in the Rockwell Automation FactoryTalk® Remote Access™ possibly resulting in remote code execution if exploited. While running the FTRA installer package, the executable path is not pro...Show more An unquoted executable path exists in the Rockwell Automation FactoryTalk® Remote Access™ possibly resulting in remote code execution if exploited. While running the FTRA installer package, the executable path is not properly quoted, which could allow a threat actor to enter a malicious executable and run it as a System user. A threat actor needs admin privileges to exploit this vulnerability.Show less
CVE-2024-4461 - - Nov 21, 2024 May 3, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Unquoted path or search item vulnerability in SugarSync versions prior to 4.1.3 for Windows. This misconfiguration could allow an unauthorized local user to inject arbitrary code into the unquoted service path, resulting...Show more Unquoted path or search item vulnerability in SugarSync versions prior to 4.1.3 for Windows. This misconfiguration could allow an unauthorized local user to inject arbitrary code into the unquoted service path, resulting in privilege escalation.Show less
CVE-2023-39464 1Trianglemicroworks 1Scada Data Gateway Jun 17, 2025 May 3, 2024 N/A· v4 7.2 HIGH· v3 N/A· v2 Triangle MicroWorks SCADA Data Gateway GTWWebMonitorService Unquoted Search Path Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute code on affected installations of Triangle Micro...Show more Triangle MicroWorks SCADA Data Gateway GTWWebMonitorService Unquoted Search Path Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute code on affected installations of Triangle MicroWorks SCADA Data Gateway. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the configuration of the GTWWebMonitorService service. The path to the service executable contains spaces not surrounded by quotations. An attacker can leverage this vulnerability to execute arbitrary code in the context of root. Was ZDI-CAN-20538.Show less
CVE-2024-34010 - - Apr 10, 2026 Apr 29, 2024 N/A· v4 8.2 HIGH· v3 N/A· v2 Local privilege escalation due to unquoted search path vulnerability. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 37758, Acronis Cyber Protect 16 (Windows) before build 3...Show more Local privilege escalation due to unquoted search path vulnerability. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 37758, Acronis Cyber Protect 16 (Windows) before build 38690, Acronis True Image (Windows) before build 42386, Acronis True Image OEM (Windows) before build 42575.Show less
CVE-2024-31804 - - Nov 22, 2024 Apr 23, 2024 N/A· v4 6.7 MEDIUM· v3 N/A· v2 An unquoted service path vulnerability in Terratec DMX_6Fire USB v.1.23.0.02 allows a local attacker to escalate privileges via the Program.exe component.
CVE-2024-4031 - - Nov 21, 2024 Apr 23, 2024 N/A· v4 4.4 MEDIUM· v3 N/A· v2 Unquoted Search Path or Element vulnerability in Logitech MEVO WEBCAM APP on Windows allows Local Execution of Code.
CVE-2024-22437 - - Nov 21, 2024 Apr 15, 2024 N/A· v4 7.3 HIGH· v3 N/A· v2 A potential security vulnerability has been identified in VSS Provider and CAPI Proxy software for certain HPE MSA storage products. This vulnerability could be exploited to gain elevated privilege on the system.
CVE-2024-1618 - - Nov 21, 2024 Mar 12, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 A search path or unquoted item vulnerability in Faronics Deep Freeze Server Standard, which affects versions 8.30.020.4627 and earlier. This vulnerability affects the DFServ.exe file. An attacker with local user privileg...Show more A search path or unquoted item vulnerability in Faronics Deep Freeze Server Standard, which affects versions 8.30.020.4627 and earlier. This vulnerability affects the DFServ.exe file. An attacker with local user privileges could exploit this vulnerability to replace the legitimate DFServ.exe service executable with a malicious file of the same name and located in a directory that has a higher priority than the legitimate directory. Thus, when the service starts, it will run the malicious file instead of the legitimate executable, allowing the attacker to execute arbitrary code, gain unauthorized access to the compromised system or stop the service from running.Show less
CVE-2024-25552 1Wut 3Com Port Redirector Legacy Com Port Redirector Plug & PlayOpc Server Mar 4, 2025 Mar 1, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 A local attacker can gain administrative privileges by inserting an executable file in the path of the affected product.
CVE-2024-24722 112dsynergy 212dsynergy File Replication Server Apr 2, 2025 Feb 19, 2024 N/A· v4 9.1 CRITICAL· v3 N/A· v2 An unquoted service path vulnerability in the 12d Synergy Server and File Replication Server components may allow an attacker to gain elevated privileges via the 12d Synergy Server and/or 12d Synergy File Replication Ser...Show more An unquoted service path vulnerability in the 12d Synergy Server and File Replication Server components may allow an attacker to gain elevated privileges via the 12d Synergy Server and/or 12d Synergy File Replication Server executable service path. This is fixed in 4.3.10.192, 5.1.5.221, and 5.1.6.235.Show less
CVE-2023-24542 1Intel 1Thunderbolt Dch Driver May 12, 2025 Feb 14, 2024 N/A· v4 6.7 MEDIUM· v3 N/A· v2 Unquoted search path or element in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2024-1201 1Panterasoft 1Hdd Health Nov 21, 2024 Feb 2, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Search path or unquoted item vulnerability in HDD Health affecting versions 4.2.0.112 and earlier. This vulnerability could allow a local attacker to store a malicious executable file within the unquoted search path, res...Show more Search path or unquoted item vulnerability in HDD Health affecting versions 4.2.0.112 and earlier. This vulnerability could allow a local attacker to store a malicious executable file within the unquoted search path, resulting in privilege escalation.Show less
CVE-2020-24682 1Br Automation 2Automation Net/pvi Automation Studio Nov 21, 2024 Feb 2, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Unquoted Search Path or Element vulnerability in B&R Industrial Automation Automation Studio, B&R Industrial Automation NET/PVI allows Target Programs with Elevated Privileges.This issue affects Automation Studio: from 4...Show more Unquoted Search Path or Element vulnerability in B&R Industrial Automation Automation Studio, B&R Industrial Automation NET/PVI allows Target Programs with Elevated Privileges.This issue affects Automation Studio: from 4.0 through 4.6, from 4.7.0 before 4.7.7 SP, from 4.8.0 before 4.8.6 SP, from 4.9.0 before 4.9.4 SP; NET/PVI: from 4.0 through 4.6, from 4.7.0 before 4.7.7, from 4.8.0 before 4.8.6, from 4.9.0 before 4.9.4. Show less
CVE-2023-7043 1Eset 6Endpoint Antivirus Endpoint SecurityInternet Security+3 more Nov 21, 2024 Jan 31, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Unquoted service path in ESET products allows to drop a prepared program to a specific location and run on boot with the NT AUTHORITY\NetworkService permissions.
CVE-2023-6631 1Subnet 1Powersystem Center Nov 21, 2024 Jan 8, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 PowerSYSTEM Center versions 2020 Update 16 and prior contain a vulnerability that may allow an authorized local user to insert arbitrary code into the unquoted service path and escalate privileges.
CVE-2023-32658 1Intel 1Hdmi Firmware Nov 21, 2024 Nov 14, 2023 N/A· v4 7.3 HIGH· v3 N/A· v2 Unquoted search path in some Intel(R) NUC Kits NUC7i3DN, NUC7i5DN, NUC7i7DN HDMI firmware update tool software before version 1.79.1.1 may allow an authenticated user to potentially enable escalation of privilege via loc...Show more Unquoted search path in some Intel(R) NUC Kits NUC7i3DN, NUC7i5DN, NUC7i7DN HDMI firmware update tool software before version 1.79.1.1 may allow an authenticated user to potentially enable escalation of privilege via local access.Show less
CVE-2023-29165 1Intel 2Arc A Graphics Iris Xe Graphics Nov 21, 2024 Nov 14, 2023 N/A· v4 7.3 HIGH· v3 N/A· v2 Unquoted search path or element in some Intel(R) Arc(TM) Control software before version 1.73.5335.2 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2023-25075 1Intel 1Server Configuration Utility Nov 21, 2024 Nov 14, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Unquoted search path in the installer for some Intel Server Configuration Utility software before version 16.0.9 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2023-0392 1Okta 1Ldap Agent Nov 21, 2024 Nov 8, 2023 N/A· v4 6.7 MEDIUM· v3 N/A· v2 The LDAP Agent Update service with versions prior to 5.18 used an unquoted path, which could allow arbitrary code execution.

Previous 1...121314...22 Next