CVE-2021-47845

Name of the Vulnerable Software and Affected Versions Spy Emergency version 25.0.650

Description The software contains an unquoted service path vulnerability in its Windows service configurations. This allows local attackers to execute code with elevated privileges. The vulnerability exists due to unquoted file paths in SpyEmergencyHealth.exe and SpyEmergencySrv.exe, enabling malicious code injection during system startup or service restart.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.