CVE-2021-47823

Name of the Vulnerable Software and Affected Versions Acer ePowerSvc version 6.0.3008.0

Description The software contains an unquoted service path issue. This allows local users to potentially execute code with elevated system privileges. An attacker can exploit the unquoted path in the service configuration to inject malicious code. This code would then execute with LocalSystem permissions during service startup.

Recommendations Apply appropriate quoting to the service path to prevent unauthorized code execution.