Realtek Wireless LAN Utility 700.1631 - 'Realtek11nSU' Unquoted Service Path | Advisories

Advisories

Realtek Wireless LAN Utility 700.1631 - 'Realtek11nSU' Unquoted Service Path

severity: high
date: January 21, 2026
Affecting: Realtek Wireless LAN Utility 700.1631
CVE: CVE-2021-47880
CWE: CWE-428 Unquoted Search Path or Element
CVSS: 8.5
CVSS V4 Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
References: ExploitDB-49646
Realtek Official Homepage
Credit: Luis Martinez
Description: Realtek Wireless LAN Utility 700.1631 contains an unquoted service path vulnerability that allows local users to potentially execute code with elevated system privileges. Attackers can exploit the unquoted service path by inserting malicious code in the system root path that would execute during application startup or system reboot.