VYPR

CWE-428

Unquoted Search Path or Element

BaseDraft

Description

The product uses a search path that contains an unquoted element, in which the element contains whitespace or other separators. This can cause the product to access resources in a parent path.

If a malicious individual has access to the file system, it is possible to elevate privileges by inserting such a file as "C:\Program.exe" to be run by a privileged program making use of WinExec.

Hierarchy (View 1000)

Parents

Children

none

CVEs mapped to this weakness (233)

page 5 of 12
  • CVE-2020-37047HigFeb 1, 2026
    risk 0.51cvss 7.8epss 0.00

    Deep Instinct Windows Agent 1.2.29.0 contains an unquoted service path vulnerability in the DeepMgmtService that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in C:\Program Files\HP Sure Sense\DeepMgmtService.exe…

  • CVE-2020-37045HigFeb 1, 2026
    risk 0.51cvss 7.8epss 0.00

    Veritas NetBackup 7.0 contains an unquoted service path vulnerability in the NetBackup INET Daemon service that allows local users to potentially execute arbitrary code. Attackers can exploit the unquoted path in C:\Program Files\Veritas\NetBackup\bin\bpinetd.exe to inject…

  • CVE-2020-37037HigFeb 1, 2026
    risk 0.51cvss 7.8epss 0.00

    Avast SecureLine 5.5.522.0 contains an unquoted service path vulnerability that allows local users to potentially execute code with elevated system privileges. Attackers can exploit the unquoted path in the service configuration to inject malicious code that would execute with…

  • CVE-2020-37060HigJan 30, 2026
    risk 0.51cvss 7.8epss 0.00

    Atomic Alarm Clock 6.3 contains a local privilege escalation vulnerability in its service configuration that allows attackers to execute arbitrary code with SYSTEM privileges. Attackers can exploit the unquoted service path by placing a malicious executable named 'Program.exe'…

  • CVE-2020-37059HigJan 30, 2026
    risk 0.51cvss 7.8epss 0.00

    Popcorn Time 6.2.1.14 contains an unquoted service path vulnerability that allows local non-privileged users to potentially execute code with elevated system privileges. Attackers can insert malicious executables in Program Files (x86) or system root directories to be executed…

  • CVE-2020-37058HigJan 30, 2026
    risk 0.51cvss 7.8epss 0.00

    Andrea ST Filters Service 1.0.64.7 contains an unquoted service path vulnerability in its Windows service configuration. Local attackers can exploit the unquoted path to inject malicious code that will execute with elevated LocalSystem privileges during service startup.

  • CVE-2020-37030HigJan 30, 2026
    risk 0.51cvss 7.8epss 0.00

    Outline Service 1.3.3 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path in C:\Program Files (x86)\Outline to inject malicious code that…

  • CVE-2020-37021HigJan 29, 2026
    risk 0.51cvss 7.8epss 0.00

    10-Strike Bandwidth Monitor 3.9 contains an unquoted service path vulnerability in multiple services that allows local attackers to escalate privileges. Attackers can place a malicious executable in specific file path locations to achieve privilege escalation to SYSTEM during…

  • CVE-2020-37020HigJan 29, 2026
    risk 0.51cvss 7.8epss 0.00

    SonarQube 8.3.1 contains an unquoted service path vulnerability that allows local attackers to gain SYSTEM privileges by exploiting the service executable path. Attackers can replace the wrapper.exe in the service path with a malicious executable to execute code with highest…

  • CVE-2020-37017HigJan 29, 2026
    risk 0.51cvss 7.8epss 0.00

    CodeMeter 6.60 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path in the CodeMeter Runtime Server service to inject malicious code that…

  • CVE-2020-37016HigJan 29, 2026
    risk 0.51cvss 7.8epss 0.00

    BarcodeOCR 19.3.6 contains an unquoted service path vulnerability that allows local attackers to execute code with elevated privileges during system startup. Attackers can exploit the unquoted path in the service configuration to inject malicious executables that will run with…

  • CVE-2020-36992HigJan 28, 2026
    risk 0.51cvss 7.8epss 0.00

    Nord VPN 6.31.13.0 contains an unquoted service path vulnerability in its nordvpn-service that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted binary path during system startup or reboot to potentially run malicious code with…

  • CVE-2020-36991HigJan 28, 2026
    risk 0.51cvss 7.8epss 0.00

    ShareMouse 5.0.43 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the insecure service path configuration by placing malicious executables in specific system…

  • CVE-2020-36990HigJan 28, 2026
    risk 0.51cvss 7.8epss 0.00

    Input Director 1.4.3 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted path during system startup or reboot to inject and run malicious…

  • CVE-2020-36989HigJan 28, 2026
    risk 0.51cvss 7.8epss 0.00

    ForensiT AppX Management Service 2.2.0.4 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted path in the service configuration to inject malicious code…

  • CVE-2020-36987HigJan 28, 2026
    risk 0.51cvss 7.8epss 0.00

    Program Access Controller 1.2.0.0 contains an unquoted service path vulnerability in PACService.exe that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted path during system startup or reboot to inject and run malicious…

  • CVE-2020-36986HigJan 28, 2026
    risk 0.51cvss 7.8epss 0.00

    Prey 1.9.6 contains an unquoted service path vulnerability that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in the CronService to insert malicious code that would execute during application startup or system…

  • CVE-2020-36985HigJan 28, 2026
    risk 0.51cvss 7.8epss 0.00

    IP Watcher 3.0.0.30 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to execute arbitrary code. Attackers can exploit the unquoted binary path to inject malicious executables that will be launched with elevated…

  • CVE-2020-36984HigJan 28, 2026
    risk 0.51cvss 7.8epss 0.00

    EPSON 1.124 contains an unquoted service path vulnerability in the SENADB service that allows local attackers to execute code with elevated system privileges. Attackers can exploit the unquoted path in C:\Program Files (x86)\EPSON_P2B\Printer Software\Status Monitor\ to inject…

  • CVE-2020-36983HigJan 27, 2026
    risk 0.51cvss 7.8epss 0.00

    Quick 'n Easy FTP Service 3.2 contains an unquoted service path vulnerability that allows local attackers to execute arbitrary code during service startup. Attackers can exploit the misconfigured service binary path to inject malicious executables with elevated LocalSystem…