What is CVE-2020-37229?

CVE-2020-37229 is a high-severity vulnerability in Oki Spsv Port Manager, classified under Unquoted Search Path or Element. CVSS score: 7.8/10. Published 2026-05-16.

How severe is CVE-2020-37229?

High severity. CVSS v3 base score is 7.8 out of 10.

Vulnerability in Oki Spsv Port Manager

CVE-2020-37229

OKI sPSV Port Manager 1.0.41 contains an unquoted service path vulnerability in the sPSVOpLclSrv service that allows local attackers to escalate privileges by inserting executable files into the unquoted path. Attackers can place a malicio…

EPSS: 0.000 (2.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Oki Spsv Port Manager — versions 1.0.41

Weakness classification (CWE)

CWE-428 — Unquoted Search Path or Element

References

disclosure@vulncheck.com (exploit)
disclosure@vulncheck.com (product)
disclosure@vulncheck.com (product)
disclosure@vulncheck.com (third-party-advisory)

Frequently asked questions

What is CVE-2020-37229?: CVE-2020-37229 is a high-severity vulnerability in Oki Spsv Port Manager, classified under Unquoted Search Path or Element. CVSS score: 7.8/10. Published 2026-05-16.
How severe is CVE-2020-37229?: High severity. CVSS v3 base score is 7.8 out of 10.