CWE-428 · Unquoted Search Path or Element

450 CVEs classified under CWE-428 (Unquoted Search Path or Element). Browse by severity and year.

Top CVEs for CWE-428
CVESeverityScorePublishedSummary
CVE-2022-50935Critical9.82026-01-13Flame II HSPA USB Modem contains an unquoted service path vulnerability in its Windows service configuration. Attackers can exploit the unquoted path in 'C:\Pr…
CVE-2023-38408Critical9.82023-07-20The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forward…
CVE-2022-36344Critical9.82022-08-16An unquoted search path vulnerability exists in 'JustSystems JUST Online Update for J-License' bundled with multiple products for corporate users as in Ichitar…
CVE-2020-9292Critical9.82020-06-04An unquoted service path vulnerability in the FortiSIEM Windows Agent component may allow an attacker to gain elevated privileges via the AoWinAgt executable s…
CVE-2019-17658Critical9.82020-03-12An unquoted service path vulnerability in the FortiClient FortiTray component of FortiClientWindows v6.2.2 and prior allow an attacker to gain elevated privile…
CVE-2019-8459Critical9.82019-06-20Check Point Endpoint Security Client for Windows, with the VPN blade, before version E80.83, starts a process without using quotes in the path. This can cause…
CVE-2024-24722Critical9.12024-02-19An unquoted service path vulnerability in the 12d Synergy Server and File Replication Server components may allow an attacker to gain elevated privileges via t…
CVE-2025-12507High8.82025-10-31The service Bizerba Communication Server (BCS) has an unquoted service path. Due to the way Windows searches the executable for the BCS service, malicious prog…
CVE-2023-27298High8.82023-05-10Uncontrolled search path in the WULT software maintained by Intel(R) before version 1.0.0 (commit id 592300b) may allow an unauthenticated user to potentially…
CVE-2020-27645High8.82020-12-29The Inventory module of the 1E Client 5.0.0.745 doesn't handle an unquoted path when executing %PROGRAMFILES%\1E\Client\Tachyon.Performance.Metrics.exe. This m…
CVE-2020-27644High8.82020-12-29The Inventory module of the 1E Client 5.0.0.745 doesn't handle an unquoted path when executing %PROGRAMFILES%\1E\Client\Tachyon.Performance.Metrics.exe. This m…
CVE-2016-5793High8.82016-09-24Unquoted Windows search path vulnerability in Moxa Active OPC Server before 2.4.19 allows local users to gain privileges via a Trojan horse executable file in…
CVE-2025-36384High8.42026-01-30IBM Db2 for Windows 12.1.0 - 12.1.3 could allow a local user with filesystem access to escalate their privileges due to the use of an unquoted search path ele…
CVE-2023-54338High8.42026-01-13Tftpd32 SE 4.60 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated privileges. Att…
CVE-2023-54336High8.42026-01-13Mediconta 3.7.27 contains an unquoted service path vulnerability in the servermedicontservice that allows local users to potentially execute code with elevated…
CVE-2023-53984High8.42026-01-13Clevo HotKey Clipboard 2.1.0.6 contains an unquoted service path vulnerability in the HKClipSvc service that allows local non-privileged users to potentially e…
CVE-2022-50938High8.42026-01-13CONTPAQi AdminPAQ 14.0.0 contains an unquoted service path vulnerability in the AppKeyLicenseServer service running with LocalSystem privileges. Attackers can…
CVE-2022-50930High8.42026-01-13Emerson PAC Machine Edition 9.80 contains an unquoted service path vulnerability in the TrapiServer service that allows local users to potentially execute code…
CVE-2022-50929High8.42026-01-13Connectify Hotspot 2018 contains an unquoted service path vulnerability in its ConnectifyService executable that allows local attackers to potentially execute…
CVE-2022-50924High8.42026-01-13Private Internet Access 3.3 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system…