CVE-2021-47890

Name of the Vulnerable Software and Affected Versions LogonExpert version 8.1

Description LogonExpert 8.1 has an unquoted service path issue within the LogonExpertSvc service, which operates with LocalSystem privileges. This allows attackers to potentially place malicious executables in intermediate directories. Successful exploitation could lead to elevated system access when the service starts.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.