VYPR

CWE-428

Unquoted Search Path or Element

BaseDraft

Description

The product uses a search path that contains an unquoted element, in which the element contains whitespace or other separators. This can cause the product to access resources in a parent path.

If a malicious individual has access to the file system, it is possible to elevate privileges by inserting such a file as "C:\Program.exe" to be run by a privileged program making use of WinExec.

Hierarchy (View 1000)

Parents

Children

none

CVEs mapped to this weakness (233)

page 8 of 12
  • CVE-2021-47847HigJan 16, 2026
    risk 0.51cvss 7.8epss 0.00

    Disk Sorter Server 13.6.12 contains an unquoted service path vulnerability in its binary path configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in 'C:\Program Files\Disk Sorter Server\bin\disksrs.exe' to…

  • CVE-2021-47845HigJan 16, 2026
    risk 0.51cvss 7.8epss 0.00

    Spy Emergency 25.0.650 contains an unquoted service path vulnerability in its Windows service configurations that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted file paths in SpyEmergencyHealth.exe and SpyEmergencySrv.exe to…

  • CVE-2021-47833HigJan 16, 2026
    risk 0.51cvss 7.8epss 0.00

    WifiHotSpot 1.0.0.0 contains an unquoted service path vulnerability in its WifiHotSpotService.exe that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted path during system startup or reboot to inject and run malicious executables…

  • CVE-2021-47829HigJan 16, 2026
    risk 0.51cvss 7.8epss 0.00

    DHCP Broadband 4.1.0.1503 contains an unquoted service path vulnerability in its service configuration that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted path in 'C:\Program Files\DHCP Broadband 4\dhcpt.exe' to inject…

  • CVE-2021-47828HigJan 16, 2026
    risk 0.51cvss 7.8epss 0.00

    BOOTP Turbo 2.0.0.1253 contains an unquoted service path vulnerability in its Windows service configuration. Attackers can exploit the unquoted path to execute arbitrary code with elevated LocalSystem privileges during system startup or reboot.

  • CVE-2021-47826HigJan 16, 2026
    risk 0.51cvss 7.8epss 0.00

    Acer Backup Manager 3.0.0.99 contains an unquoted service path vulnerability in the NTI IScheduleSvc service that allows local users to potentially execute arbitrary code. Attackers can exploit the unquoted path in C:\Program Files (x86)\NTI\Acer Backup Manager\ to inject…

  • CVE-2021-47825HigJan 16, 2026
    risk 0.51cvss 7.8epss 0.00

    Acer Updater Service 1.2.3500.0 contains an unquoted service path vulnerability that allows local users to execute code with elevated system privileges. Attackers can exploit the unquoted path in C:\Program Files\Acer\Acer Updater\ to inject malicious executables that will run…

  • CVE-2021-47823HigJan 16, 2026
    risk 0.51cvss 7.8epss 0.00

    Acer ePowerSvc 6.0.3008.0 contains an unquoted service path vulnerability that allows local users to potentially execute code with elevated system privileges. Attackers can exploit the unquoted path in the service configuration to inject malicious code that would execute with…

  • CVE-2021-47822HigJan 16, 2026
    risk 0.51cvss 7.8epss 0.00

    DiskBoss Service 12.2.18 contains an unquoted service path vulnerability in its binary path configuration that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted path by placing malicious executables in potential path locations to…

  • CVE-2021-47804HigJan 16, 2026
    risk 0.51cvss 7.8epss 0.00

    Wise Care 365 5.6.7.568 contains an unquoted service path vulnerability in the WiseBootAssistant service running with LocalSystem privileges. Attackers can exploit this by inserting a malicious executable in the service path, which will execute with elevated system privileges…

  • CVE-2021-47803HigJan 16, 2026
    risk 0.51cvss 7.8epss 0.00

    iFunbox 4.2 contains an unquoted service path vulnerability in the Apple Mobile Device Service that allows local attackers to execute code with elevated privileges. Attackers can insert a malicious executable into the unquoted service path to run with LocalSystem privileges when…

  • CVE-2021-47762HigJan 15, 2026
    risk 0.51cvss 7.8epss 0.00

    HTTPDebuggerPro 9.11 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path in the service configuration to inject malicious executables and…

  • CVE-2025-57227HigOct 29, 2025
    risk 0.51cvss 7.8epss 0.00

    An unquoted service path in Kingosoft Technology Ltd Kingo ROOT v1.5.8.3353 allows attackers to escalate privileges via placing a crafted executable file into a parent folder.

  • CVE-2024-4461HigMay 3, 2024
    risk 0.51cvss 7.8epss 0.00

    Unquoted path or search item vulnerability in SugarSync versions prior to 4.1.3 for Windows. This misconfiguration could allow an unauthorized local user to inject arbitrary code into the unquoted service path, resulting in privilege escalation.

  • CVE-2024-1618HigMar 12, 2024
    risk 0.51cvss 7.8epss 0.00

    A search path or unquoted item vulnerability in Faronics Deep Freeze Server Standard, which affects versions 8.30.020.4627 and earlier. This vulnerability affects the DFServ.exe file. An attacker with local user privileges could exploit this vulnerability to replace the…

  • CVE-2018-11063HigAug 10, 2018
    risk 0.51cvss 7.8epss 0.00

    Dell WMS versions 1.1 and prior are impacted by multiple unquoted service path vulnerabilities. Affected software installs multiple services incorrectly by specifying the paths to the service executables without quotes. This could potentially allow a low-privileged local user to…

  • CVE-2018-3688HigJul 10, 2018
    risk 0.51cvss 7.8epss 0.00

    Unquoted service paths in Intel Quartus Prime Programmer and Tools in versions 15.1 - 18.0 allow a local attacker to potentially execute arbitrary code.

  • CVE-2018-3687HigJul 10, 2018
    risk 0.51cvss 7.8epss 0.00

    Unquoted service paths in Intel Quartus II Programmer and Tools in versions 11.0 - 15.0 allow a local attacker to potentially execute arbitrary code.

  • CVE-2018-3684HigJul 10, 2018
    risk 0.51cvss 7.8epss 0.00

    Unquoted service paths in Intel Quartus II in versions 11.0 - 15.0 allow a local attacker to potentially execute arbitrary code.

  • CVE-2018-3683HigJul 10, 2018
    risk 0.51cvss 7.8epss 0.00

    Unquoted service paths in Intel Quartus Prime in versions 15.1 - 18.0 allow a local attacker to potentially execute arbitrary code.