CVE-2021-42563

Name of the Vulnerable Software and Affected Versions NI Service Locator versions prior to 18.0

Description The issue is related to an Unquoted Service Path in nisvcloc.exe, which may allow an authorized local user to insert arbitrary code into the unquoted service path and escalate privileges on Windows.

Recommendations For versions prior to 18.0, update to version 18.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the nisvcloc.exe service to minimize the risk of exploitation.