CVE-2021-47859

Name of the Vulnerable Software and Affected Versions ActivIdentity version 8.2

Description The ac.sharedstore service contains an unquoted service path. This occurs when a service path contains spaces and is not enclosed in quotation marks, allowing local attackers to inject malicious executables into the directory 'C:Program FilesCommon FilesActivIdentity' to execute arbitrary code and escalate privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.