VYPR
High severity7.8NVD Advisory· Published Jan 21, 2026· Updated Apr 15, 2026

CVE-2021-47868

CVE-2021-47868

Description

WIN-PACK PRO 4.8 contains an unquoted service path vulnerability in the WPCommandFileService that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in C:\Program Files \WINPAKPRO\WPCommandFileService Service.exe to inject malicious code that would execute with LocalSystem permissions.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.