CVE-2021-47864 | THREATINT

Description

OSAS Traverse Extension 11 contains an unquoted service path vulnerability in the TravExtensionHostSvc service running with LocalSystem privileges. Attackers can exploit the unquoted path to inject and execute malicious code by placing executable files in the service's path, potentially gaining elevated system access.

PUBLISHED Reserved 2026-01-18 | Published 2026-01-21 | Updated 2026-01-22 | Assigner VulnCheck

HIGH: 8.5CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Problem types

Unquoted Search Path or Element

Product status

11 x86

affected

Credits

Tech Johnny finder

References

www.exploit-db.com/exploits/49698 (ExploitDB-49698) exploit

web.archive.org/web/20200817150522/https://www.osas.com/ (Archived Vendor Homepage) product

www.vulncheck.com/...vextensionhostsvc-unquoted-service-path (VulnCheck Advisory: OSAS Traverse Extension 11 - 'travextensionhostsvc' Unquoted Service Path) third-party-advisory

cve.org (CVE-2021-47864)

nvd.nist.gov (CVE-2021-47864)

Download JSON