CWE-428 · Unquoted Search Path or Element
450 CVEs classified under CWE-428 (Unquoted Search Path or Element). Browse by severity and year.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-50935 | Critical | 9.8 | 2026-01-13 | Flame II HSPA USB Modem contains an unquoted service path vulnerability in its Windows service configuration. Attackers can exploit the unquoted path in 'C:\Pr… |
CVE-2023-38408 | Critical | 9.8 | 2023-07-20 | The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forward… |
CVE-2022-36344 | Critical | 9.8 | 2022-08-16 | An unquoted search path vulnerability exists in 'JustSystems JUST Online Update for J-License' bundled with multiple products for corporate users as in Ichitar… |
CVE-2020-9292 | Critical | 9.8 | 2020-06-04 | An unquoted service path vulnerability in the FortiSIEM Windows Agent component may allow an attacker to gain elevated privileges via the AoWinAgt executable s… |
CVE-2019-17658 | Critical | 9.8 | 2020-03-12 | An unquoted service path vulnerability in the FortiClient FortiTray component of FortiClientWindows v6.2.2 and prior allow an attacker to gain elevated privile… |
CVE-2019-8459 | Critical | 9.8 | 2019-06-20 | Check Point Endpoint Security Client for Windows, with the VPN blade, before version E80.83, starts a process without using quotes in the path. This can cause… |
CVE-2024-24722 | Critical | 9.1 | 2024-02-19 | An unquoted service path vulnerability in the 12d Synergy Server and File Replication Server components may allow an attacker to gain elevated privileges via t… |
CVE-2025-12507 | High | 8.8 | 2025-10-31 | The service Bizerba Communication Server (BCS) has an unquoted service path. Due to the way Windows searches the executable for the BCS service, malicious prog… |
CVE-2023-27298 | High | 8.8 | 2023-05-10 | Uncontrolled search path in the WULT software maintained by Intel(R) before version 1.0.0 (commit id 592300b) may allow an unauthenticated user to potentially… |
CVE-2020-27645 | High | 8.8 | 2020-12-29 | The Inventory module of the 1E Client 5.0.0.745 doesn't handle an unquoted path when executing %PROGRAMFILES%\1E\Client\Tachyon.Performance.Metrics.exe. This m… |
CVE-2020-27644 | High | 8.8 | 2020-12-29 | The Inventory module of the 1E Client 5.0.0.745 doesn't handle an unquoted path when executing %PROGRAMFILES%\1E\Client\Tachyon.Performance.Metrics.exe. This m… |
CVE-2016-5793 | High | 8.8 | 2016-09-24 | Unquoted Windows search path vulnerability in Moxa Active OPC Server before 2.4.19 allows local users to gain privileges via a Trojan horse executable file in… |
CVE-2025-36384 | High | 8.4 | 2026-01-30 | IBM Db2 for Windows 12.1.0 - 12.1.3 could allow a local user with filesystem access to escalate their privileges due to the use of an unquoted search path ele… |
CVE-2023-54338 | High | 8.4 | 2026-01-13 | Tftpd32 SE 4.60 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated privileges. Att… |
CVE-2023-54336 | High | 8.4 | 2026-01-13 | Mediconta 3.7.27 contains an unquoted service path vulnerability in the servermedicontservice that allows local users to potentially execute code with elevated… |
CVE-2023-53984 | High | 8.4 | 2026-01-13 | Clevo HotKey Clipboard 2.1.0.6 contains an unquoted service path vulnerability in the HKClipSvc service that allows local non-privileged users to potentially e… |
CVE-2022-50938 | High | 8.4 | 2026-01-13 | CONTPAQi AdminPAQ 14.0.0 contains an unquoted service path vulnerability in the AppKeyLicenseServer service running with LocalSystem privileges. Attackers can… |
CVE-2022-50930 | High | 8.4 | 2026-01-13 | Emerson PAC Machine Edition 9.80 contains an unquoted service path vulnerability in the TrapiServer service that allows local users to potentially execute code… |
CVE-2022-50929 | High | 8.4 | 2026-01-13 | Connectify Hotspot 2018 contains an unquoted service path vulnerability in its ConnectifyService executable that allows local attackers to potentially execute… |
CVE-2022-50924 | High | 8.4 | 2026-01-13 | Private Internet Access 3.3 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system… |