How severe is CVE-2020-5569?

This vulnerability has a severity rating of HIGH with a CVSS score of 8.4 out of 10.

What type of vulnerability is CVE-2020-5569?

This is classified as CWE-428, which is a common weakness in software security.

CVE-2020-5569

HIGH Year: 2020

CVSS v3 Score

8.4

High

CVSS v2 Score

4.6

Medium

Weakness Type

CWE-428

View all →

Vulnerability Description

An unquoted search path vulnerability exists in HDD Password tool (for Windows) version 1.20.6620 and earlier which is stored in CANVIO PREMIUM 3TB(HD-MB30TY, HD-MA30TY, HD-MB30TS, HD-MA30TS), CANVIO PREMIUM 2TB(HD-MB20TY, HD-MA20TY, HD-MB20TS, HD-MA20TS), CANVIO PREMIUM 1TB(HD-MB10TY, HD-MA10TY, HD-MB10TS, HD-MA10TS), CANVIO SLIM 1TB(HD-SB10TK, HD-SB10TS), and CANVIO SLIM 500GB(HD-SB50GK, HD-SA50GK, HD-SB50GS, HD-SA50GS), and which was downloaded before 2020 May 10. Since it registers Windows services with unquoted file paths, when a registered path contains spaces, and a malicious executable is placed on a certain path, it may be executed with the privilege of the Windows service.

CVE-2024-34010

HIGH

CVSS:8.2(High)

Local privilege escalation due to unquoted search path vulnerability. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 37758, Acronis Cyber Protect 16 (Win...

CWE-4282024

CVE-2021-45460

HIGH

CVSS:8.1(High)

A vulnerability has been identified in SICAM PQ Analyzer (All versions < V3.18). A service is started by an unquoted registry entry. As there are spaces in this path, attackers with write privilege to...

CWE-4282021

CVE-2016-5793

HIGH

CVSS:8.8(High)

Unquoted Windows search path vulnerability in Moxa Active OPC Server before 2.4.19 allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory.

CWE-4282016

CVE-2020-27644

HIGH

CVSS:8.8(High)

The Inventory module of the 1E Client 5.0.0.745 doesn't handle an unquoted path when executing %PROGRAMFILES%\1E\Client\Tachyon.Performance.Metrics.exe. This may allow remote authenticated users and l...

CWE-4282020

CVE-2020-27645

HIGH

CVSS:8.8(High)

CWE-4282020

CVE-2016-15003

HIGH

CVSS:7.8(High)

A vulnerability has been found in FileZilla Client 3.17.0.0 and classified as problematic. This vulnerability affects unknown code of the file C:\Program Files\FileZilla FTP Client\uninstall.exe of th...

CWE-4282016

CVE-2020-5569

Vulnerability Description

Related Vulnerabilities

CVE-2024-34010

CVE-2021-45460

CVE-2016-5793

CVE-2020-27644

CVE-2020-27645

CVE-2016-15003