CVE-2021-47869

Name of the Vulnerable Software and Affected Versions Brother BRAdmin Professional version 3.75

Description The BRA Scheduler service contains an unquoted service path, which is a condition where a service executable path contains spaces and is not enclosed in quotation marks. This allows local users to potentially execute arbitrary code. An attacker can achieve local system privileges by placing a malicious executable named 'BRAdmin' in the 'C:Program Files (x86)Brother' directory.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.