Unrated severityNVD Advisory· Published Jan 15, 2026· Updated Apr 7, 2026

TotalAV 5.15.69 - Unquoted Service Path

CVE-2021-47787

Description

TotalAV 5.15.69 contains an unquoted service path vulnerability in multiple system services running with LocalSystem privileges. Attackers can place malicious executables in specific unquoted path segments to potentially gain SYSTEM-level access by exploiting the service path configuration.

Affected products

TotalAV/TotalAVllm-create
Range: 5.15.69
Totalav/TotalAVv5
Range: 5.15.69

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.exploit-db.com/exploits/50314mitreexploit
www.vulncheck.com/advisories/totalav-unquoted-service-pathmitrethird-party-advisory
www.totalav.commitreproduct

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000