CVE-2021-47867

Publication date

2026-01-21 17:27:45

Family

VulnCheck

State

PUBLISHED

Description

WIN-PACK PRO4.8 contains an unquoted service path vulnerability in the ScheduleService that allows local users to potentially execute code with elevated system privileges. Attackers can exploit the unquoted path in C:Program Files WINPAKPROScheduleService Service.exe to inject malicious code that would execute during service startup.