CVE-2021-28269

HIGH

Soyal Technology 701Client <9.0.1 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-28269. PoCs published by LiquidWorm.

AI-analyzed exploit summary The exploit describes an insecure permissions vulnerability in SOYAL 701 Client 9.0.1, where the executable file has full control permissions for authenticated users, allowing privilege escalation via binary replacement.

Description

Soyal Technology 701Client 9.0.1 is vulnerable to Insecure permissions via client.exe binary with Authenticated Users group with Full permissions.

Exploits (1)

exploitdb WRITEUP
by LiquidWorm · textlocalwindows
https://www.exploit-db.com/exploits/49679

The exploit describes an insecure permissions vulnerability in SOYAL 701 Client 9.0.1, where the executable file has full control permissions for authenticated users, allowing privilege escalation via binary replacement.

Classification
Writeup 100%
Attack Type
Lpe
Complexity
Trivial
Reliability
Reliable
Target: SOYAL 701 Client 9.0.1
Auth required
Prerequisites: Authenticated user access to the system
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory x_refsource_misc
https://www.zeroscience.mk/en/vulnerabilities
Exploit, Third Party Advisory x_refsource_misc
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5634.php
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/49679

Scores

CVSS v3 8.8
EPSS 0.0187
EPSS Percentile 76.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-732
Status published
Products (1)
soyal/701client 9.0.1
Published Apr 27, 2021
Tracked Since Feb 18, 2026