CVE-2023-53947

HIGH

OCS Inventory NG <2.3.0.0 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-53947. PoCs published by msd0pe.

AI-analyzed exploit summary This exploit leverages an unquoted service path vulnerability in OCS Inventory NG Windows Agent versions below 2.3.1.0 to escalate privileges to SYSTEM by placing a malicious executable in a path that Windows will execute due to improper quoting.

Description

OCS Inventory NG 2.3.0.0 contains an unquoted service path vulnerability that allows local attackers to escalate privileges to system level. Attackers can place a malicious executable in the unquoted service path and trigger the service restart to execute code with elevated system privileges.

Exploits (1)

exploitdb WORKING POC
by msd0pe · textlocalwindows
https://www.exploit-db.com/exploits/51389

This exploit leverages an unquoted service path vulnerability in OCS Inventory NG Windows Agent versions below 2.3.1.0 to escalate privileges to SYSTEM by placing a malicious executable in a path that Windows will execute due to improper quoting.

Classification
Working Poc 100%
Attack Type
Lpe
Complexity
Trivial
Reliability
Reliable
Target: OCS Inventory NG Windows Agent < 2.3.1.0
Auth required
Prerequisites: Local access to the target system · Ability to write to the 'C:\Program Files (x86)\' directory · OCS Inventory Service running with an unquoted path
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory exploit
https://www.exploit-db.com/exploits/51389

Scores

CVSS v3 8.4
EPSS 0.0014
EPSS Percentile 3.2%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact total

Details

CWE
CWE-428
Status published
Products (1)
oscinventory/OCS Inventory NG < 2.3.0.0
Published Dec 19, 2025
Tracked Since Feb 18, 2026