Exploitation Summary
EIP tracks 1 public exploit for CVE-2021-43455. PoCs published by Mohammed Alshehri.
AI-analyzed exploit summary This is a writeup describing an unquoted service path vulnerability in FreeLAN 2.2, which could allow privilege escalation during system startup or reboot. The exploit details are theoretical and lack executable PoC code.
Description
An Unquoted Service Path vulnerability exists in FreeLAN 2.2 via a specially crafted file in the FreeLAN Service path.
Exploits (1)
exploitdb
WRITEUP
by Mohammed Alshehri · textlocalwindows
https://www.exploit-db.com/exploits/49630
This is a writeup describing an unquoted service path vulnerability in FreeLAN 2.2, which could allow privilege escalation during system startup or reboot. The exploit details are theoretical and lack executable PoC code.
Classification
Writeup 90%
Attack Type
Lpe
Complexity
Trivial
Reliability
Theoretical
Target:
FreeLAN 2.2
Auth required
Prerequisites:
Local access to the system · Ability to write to the vulnerable path
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (3)
Core 3
Core References
Exploit, Third Party Advisory x_refsource_misc
https://github.com/M507/Miner
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
https://www.exploit-db.com/exploits/49630
Third Party Advisory, VDB Entry x_refsource_misc
https://exchange.xforce.ibmcloud.com/vulnerabilities/197919
Scores
CVSS v3
7.8
EPSS
0.0045
EPSS Percentile
35.5%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-428
Status
published
Products (1)
freelan/freelan
2.2
Published
Apr 04, 2022
Tracked Since
Feb 18, 2026