Security Advisory

CVE-2021-47868

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-21 17:27:45

Last updated 2026-03-05 01:29:00

Assigner VulnCheck

State PUBLISHED

Description

WIN-PACK PRO 4.8 contains an unquoted service path vulnerability in the WPCommandFileService that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in C:Program Files <x86>WINPAKPROWPCommandFileService Service.exe to inject malicious code that would execute with LocalSystem permissions.

← Browse all CVEs View on cve.org ↗