Macro Expert

macro-expert

2 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Macro Expert

macro_expert

2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-47780 1Macro Expert 1Macro Expert Jan 21, 2026 Jan 16, 2026 8.5 HIGH· v4 7.8 HIGH· v3 N/A· v2 Macro Expert 4.7 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the improperly configured service path...Show more Macro Expert 4.7 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the improperly configured service path to inject malicious executables that will be run with LocalSystem permissions during service startup.Show less
CVE-2024-27674 1Macro Expert 1Macro Expert Jan 30, 2026 Apr 3, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Macro Expert through 4.9.4 allows BUILTIN\Users:(OI)(CI)(M) access to the "%PROGRAMFILES(X86)%\GrassSoft\Macro Expert" folder and thus an unprivileged user can escalate to SYSTEM by replacing the MacroService.exe binary.

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2021-47780

1Macro Expert

Jan 21, 2026

Jan 16, 2026

8.5 HIGH· v4

7.8 HIGH· v3

N/A· v2

Macro Expert 4.7 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the improperly configured service path...Show more

CVE-2024-27674

1Macro Expert

Jan 30, 2026

Apr 3, 2024

N/A· v4

7.8 HIGH· v3

N/A· v2

Macro Expert through 4.9.4 allows BUILTIN\Users:(OI)(CI)(M) access to the "%PROGRAMFILES(X86)%\GrassSoft\Macro Expert" folder and thus an unprivileged user can escalate to SYSTEM by replacing the MacroService.exe binary.