CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-47806

Dup Scout 13.5.28 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in 'C:\Program Files\Dup Scout Server\bin\dupscts.exe' to inject malicious executables and escalate privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 1.3%

CVSS Severity

CVSS v3 Score 7.8

References

https://www.dupscout.com
https://www.exploit-db.com/exploits/50025
https://www.vulncheck.com/advisories/dup-scout-multiple-unquoted-service-path
https://www.exploit-db.com/exploits/50025

Products affected by CVE-2021-47806

Flexense » Dup Scout » Version: 13.5.28

cpe:2.3:a:flexense:dup_scout:13.5.28

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-47806

Products

Pricing

Contact Us