PT-2026-3174 · Wisecleaner · Wise Care 365
Julio Aviña
·
Published
2026-01-15
·
Updated
2026-01-16
·
CVE-2021-47804
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Wise Care 365 version 5.6.7.568
Description
The software contains an unquoted service path vulnerability within the WiseBootAssistant service, which operates with LocalSystem privileges. An attacker can leverage this by placing a malicious executable within the service path. Upon service restart, this executable will run with elevated system privileges.
Recommendations
Apply appropriate quoting to the service path to prevent unauthorized execution of malicious files.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Wise Care 365