216.73.217.64

CVE-2021-47803

· Published 16/01/2026 00:16 · Modified 16/01/2026 15:55

Labels: CVE-2021-47803 2026-01-16CVE-2021-47803CWE-428[email protected]

Essential information

Published
16/01/2026 00:16
Modified
16/01/2026 15:55
Author
Creator
CVSS
8.5 HIGH (v3) 8.5 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

iFunbox 4.2 contains an unquoted service path vulnerability in the Apple Mobile Device Service that allows local attackers to execute code with elevated privileges. Attackers can insert a malicious executable into the unquoted service path to run with LocalSystem privileges when the service restarts.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
ifunbox / ifunbox cpe:2.3:a:ifunbox:ifunbox:4.2:*:*:*:*:*:*:*
apple / apple mobile device service cpe:2.3:a:apple:apple_mobile_device_service:*:*:*:*:*:*:*:*

References