CVE-2021-47790

HIGH

Active WebCam 11.5 - Code Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-47790. PoCs published by Salman Asad.

AI-analyzed exploit summary This exploit demonstrates an unquoted service path vulnerability in Active WebCam 11.5, allowing potential privilege escalation if an executable is placed in a path with spaces. The service runs with LocalSystem privileges, making it a target for local attackers.

Description

Active WebCam 11.5 contains an unquoted service path vulnerability that allows local attackers to execute arbitrary code with elevated system privileges. Attackers can exploit the misconfigured service path by placing malicious executables in specific directory locations to gain administrative access.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Salman Asad · textlocalwindows
https://www.exploit-db.com/exploits/50273

This exploit demonstrates an unquoted service path vulnerability in Active WebCam 11.5, allowing potential privilege escalation if an executable is placed in a path with spaces. The service runs with LocalSystem privileges, making it a target for local attackers.

Classification
Working Poc 90%
Attack Type
Lpe
Complexity
Trivial
Reliability
Reliable
Target: Active WebCam 11.5
Auth required
Prerequisites: Local access to the system · Ability to place an executable in a path with spaces (e.g., C:\Program.exe) · Active WebCam service configured to start automatically
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Scores

CVSS v3 7.8
EPSS 0.0021
EPSS Percentile 10.8%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-428
Status published
Products (1)
pysoft/active_webcam 11.5
Published Jan 16, 2026
Tracked Since Feb 18, 2026