CVE-2021-47767
BaseFortify
Publication date: 2026-01-15
Last updated on: 2026-01-15
Assigner: VulnCheck
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| 10-strike | network_inventory_explorer_pro | 9.31 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-428 | The product uses a search path that contains an unquoted element, in which the element contains whitespace or other separators. This can cause the product to access resources in a parent path. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an unquoted service path issue in the srvInventoryWebServer service of 10-Strike Network Inventory Explorer Pro 9.31. Because the service executable path contains spaces and is not enclosed in quotes, Windows may incorrectly parse the path and execute a malicious executable placed by an attacker in a higher-level directory. This allows a local attacker to escalate privileges and execute code with system-level permissions. [1]
How can this vulnerability impact me? :
If exploited, this vulnerability allows a local attacker to execute arbitrary code with system-level privileges on the affected machine. This means the attacker can gain full control over the system, potentially leading to unauthorized access, data theft, or disruption of services. [1]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by checking for unquoted service paths in the Windows service configuration, specifically for the 'srvInventoryWebServer' service. You can use Windows Management Instrumentation Command-line (WMIC) and Service Control (sc) commands to identify services with unquoted paths that start automatically but do not reside in the Windows directory. For example, use the command: wmic service get name,pathname,startmode | findstr /i "srvInventoryWebServer" to view the service path. Also, use sc qc srvInventoryWebServer to query the service configuration and check if the executable path is unquoted and contains spaces. [1]
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, immediately enclose the service executable path in quotes to prevent Windows from misinterpreting the path and executing malicious executables. Specifically, update the 'srvInventoryWebServer' service configuration to quote the full path to InventoryWebServer.exe. Additionally, restrict write permissions on directories in the service path to prevent attackers from placing malicious executables. Ensure that only trusted administrators have the ability to modify files in these directories. Applying the latest patches or updates from the vendor, if available, is also recommended. [1]