Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-428

CWE-428

Unquoted Search Path or Element

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product uses a search path that contains an unquoted element, in which the element contains whitespace or other separators. This can cause the product to access resources in a parent path.

427 vulnerabilities with CWE-428

CVE-2019-11093 MEDIUM

Intel(R) SCS Discovery Utility <12.0.0.129 - Privilege Escalation

CVE-2019-6149 MEDIUM

Lenovo Dynamic Power Reduction Utility <2.2.2.0 - Code Injection

CVE-2018-20341 HIGH

WINMAGIC SecureDoc Disk Encryption <8.3 - RCE

CVE-2018-16098 HIGH

Lenovo Synaptics ThinkPad UltraNav Driver - Unquoted Search Path

CVE-2018-16183 HIGH

Panasonic PC - Privilege Escalation

CVE-2018-14789 MEDIUM

Philips IntelliSpace Cardiovascular <3.1 - Privilege Escalation

CVE-2018-11063 HIGH

Dell WMS <1.1 - Privilege Escalation

CVE-2018-3688 HIGH

Intel Quartus Prime Programmer <18.0 - RCE

CVE-2018-3687 HIGH

Intel Quartus II Programmer and Tools 11.0-15.0 - Unquoted Service Path

CVE-2018-3684 HIGH

Intel Quartus II 11.0-15.0 - Unquoted Service Path

CVE-2018-3683 HIGH

Intel Quartus Prime 15.1-18.0 - Unquoted Service Path Arbitrary Code Execution

CVE-2018-3668 HIGH

Intel Processor Diagnostic Tool <4.1.0.27 - RCE

CVE-2018-10619 HIGH

RSLinx Classic <3.90.01 - Privilege Escalation

CVE-2018-4873 HIGH

Adobe Creative Cloud < 4.4.1.298 - Unquoted Search Path Privilege Escalation

CVE-2018-2406 MEDIUM

SAP Crystal Reports Server 4.0-4.30 - Unquoted Search Path Vulnerability

CVE-2018-5470 HIGH

Philips IntelliSpace Portal - Privilege Escalation

CVE-2018-6321 HIGH

Panda Global Protection 17.0.1 - Privilege Escalation

CVE-2018-6016 HIGH

10-Strike Network Monitor <5.4 - Privilege Escalation

CVE-2018-6384 HIGH

NSClient++ <0.4.1.73 - Privilege Escalation

CVE-2017-20218 HIGH

Serviio PRO 1.8 Local Privilege Escalation via Unquoted Path

CVE-2017-3141 HIGH

BIND 9.2.6-P2-9.11.1 - Privilege Escalation via Unquoted Service Path

CVE-2017-11672 HIGH

OPC Foundation LDS <1.03.367 - Privilege Escalation

CVE-2017-6015 HIGH

Rockwell Automation FactoryTalk Activation < 4.00.02 - Unquoted Search Path or Element

CVE-2017-1000475 HIGH

FreeSSHd <1.3.1 - Privilege Escalation

CVE-2017-14030 HIGH

Moxa MXview <2.8 - Privilege Escalation

Previous Page 16 of 18 Next

Details

Vulnerabilities 427

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy