CVE-2021-47799

Published: Jan 15, 2026

Modified: Jan 15, 2026

PUBLISHED

CVSS v3.1

6.2

MEDIUM

Description

Visual Tools DVR VX16 version 4.2.28 contains a local privilege escalation vulnerability in its Sudo configuration that allows attackers to gain root access. Attackers can exploit the unsafe Sudo settings by using mount commands to bind a shell, enabling unauthorized system-level privileges.

Vendor	Product	Versions
Visual-Tools	Visual Tools DVR VX16	affected `Visual Tools VX16 4.2.28.0`

Weaknesses (CWE)

CWE-266

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

References

ExploitDB-50104

exploit

Official Vendor Homepage

product

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-47799

Description

Affected Products

Weaknesses (CWE)

CVSS v3.1 Details

References