Home > Vulnerability Database > CVE-2021-47882

Mend.io Vulnerability Database

CVE-2021-47882

Good to know:

Date: January 21, 2026

FreeLAN 2.2 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to execute arbitrary code. Attackers can exploit the unquoted binary path to inject malicious executables that will be launched with elevated LocalSystem privileges during service startup.

Severity Score

7.8

Related Resources (5)

Url: https://nvd.nist.gov/vuln/detail/CVE-2021-47882

Url: https://github.com/freelan-developers/freelan

Url: https://www.vulncheck.com/advisories/freelan-freelan-service-unquoted-service-path

Url: https://www.exploit-db.com/exploits/49630

Url: https://www.mend.io/vulnerability-database/CVE-2021-47882

Severity Score

7.8

Weakness Type (CWE)

Unquoted Search Path or Element

CWE-428

CVSS v3.1

Base Score:	7.8
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2021-47882

Good to know:

Date: January 21, 2026

Severity Score

Related Resources (5)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?