Active Webcam 115 Unquoted Service Path Patched May 2026

The Active WebCam 11.5 vulnerability (CVE-2021-47790) is a local privilege escalation flaw caused by an unquoted service path. The Vulnerability

• Running services as a non-privileged account.
• Using Windows Defender Application Control (WDAC) or AppLocker.
• Monitoring for suspicious processes spawned from C:\Program.exe or similar paths.

• Patch mitigates this specific path-parsing issue but does not address other potential vulnerabilities (privilege management, code signing, buffer issues).
• Ensure file-system permissions prevent unprivileged users from writing to any directories in the service path.
• Audit other installed services for similar unquoted paths (common in older or poorly packaged Windows software).

About Active WebCam. Active WebCam captures images up to 30 frames per second from any video device including USB, analog cameras, Active WebCam Download - Webcam streaming app active webcam 115 unquoted service path patched