CVE-2021-47829

Name of the Vulnerable Software and Affected Versions DHCP Broadband version 4.1.0.1503

Description The software contains an unquoted service path vulnerability in its service configuration. This allows local attackers to execute code with elevated privileges. The vulnerable path is located at 'C:Program FilesDHCP Broadband 4dhcpt.exe', enabling attackers to inject malicious code that executes during service startup with LocalSystem permissions.

Recommendations Apply appropriate quoting to the service path in the service configuration.