High severity7.8NVD Advisory· Published Jan 21, 2026· Updated Apr 15, 2026
CVE-2021-47861
CVE-2021-47861
Description
Event Log Explorer 4.9.3 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted service path by placing malicious executables in specific file system locations that will be executed with LocalSystem account privileges during service startup.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: = 4.9.3
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.