CVE-2014-0759— Schneider Electric Floating License Manager Unquoted Search Path or Element
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2014-0759
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Schneider Electric Floating License Manager Unquoted Search Path or Element
Source: NVD (National Vulnerability Database)
Vulnerability Description
Unquoted Windows search path vulnerability in Schneider Electric Floating License Manager 1.0.0 through 1.4.0 allows local users to gain privileges via a Trojan horse application with a name composed of an initial substring of a path that contains a space character.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
未经引用的搜索路径或元素
Source: NVD (National Vulnerability Database)
Vulnerability Title
Schneider Electric Floating License Manager 非引用Windows搜索路径漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Schneider Electric Floating License Manager是法国施耐德电气(Schneider Electric)公司的一款浮动许可证管理器,它提供管理、传送、显示、保存、检查许可证密钥等功能。 Schneider Electric Floating License Manager 1.0.0至1.4.0版本中存在非引用Windows搜索路径漏洞。当服务的可执行路径包含空字符时,本地攻击者可借助恶意的程序利用该漏洞获取特权。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Schneider Electric | Floating License Manager | V1.0.0 ~ V1.4.0 | - |
II. Public POCs for CVE-2014-0759
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2014-0759
请登录查看更多情报信息。
Other References for CVE-2014-0759 (1)
- http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202014-015-01x_refsource_CONFIRM
IV. Related Vulnerabilities
Same vendor: Schneider Electric
- CVE-2026-6332
Clear Text Storage of Sensitive Information on EcoStruxure™ - CVE-2026-6866
Initialization of a Resource with an Insecure Default vulner - CVE-2026-6865
Improper Limitation of a Pathname to a Restricted Directory - CVE-2026-4827
Insufficient Entropy vulnerability on Multiple Products - CVE-2026-2401
Schneider Electric PowerChute Serial Shutdown 日志信息泄露漏洞
Same weakness: CWE-428
- CVE-2021-47974
VX Search 13.5.28 Unquoted Service Path Privilege Escalation - CVE-2020-37247
Kite 4.2.0.1 U1 Unquoted Service Path Privilege Escalation - CVE-2020-37232
Advanced System Care Service 13.0.0.157 Unquoted Service Pat - CVE-2020-37231
Privacy Drive 3.17.0 Unquoted Service Path Privilege Escalat - CVE-2020-37230
Syncplify.me Server! 5.0.37 Unquoted Service Path Privilege
V. Comments for CVE-2014-0759
No comments yet