Unrated severityNVD Advisory· Published Jan 15, 2026· Updated Jan 15, 2026

Dynojet Power Core 2.3.0 - Unquoted Service Path

CVE-2021-47773

Description

Dynojet Power Core 2.3.0 contains an unquoted service path vulnerability in the DJ.UpdateService that allows local authenticated users to potentially execute code with elevated privileges. Attackers can exploit the unquoted binary path by placing malicious executables in the service's file path to gain Local System access.

Affected products

Dynojet/Power Corellm-create
Range: = 2.3.0
Dynojet/Dynojet Power Corev5
Range: 2.3.0 (Build 303)

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.exploit-db.com/exploits/50466mitreexploit
www.dynojet.commitreproduct

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000