OSAS Traverse Extension 11 contains an unquoted service path vulnerability in the TravExtensionHostSvc service running with LocalSystem privileges
Description
OSAS Traverse Extension 11 contains an unquoted service path vulnerability in the TravExtensionHostSvc service running with LocalSystem privileges
Remediation
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Executive Summary:
A high-severity vulnerability, identified as CVE-2021-47862, has been discovered in multiple products from the vendor Rez. Successful exploitation of this flaw could allow a remote attacker to compromise affected systems, potentially leading to unauthorized access, data theft, or service disruption. Organizations are advised to take immediate action to apply security updates and mitigate this significant risk.
Vulnerability Details
CVE-ID: CVE-2021-47862
Affected Software: Rez Multiple Products
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: The provided description, "Hi-Rez Studios 5," lacks specific technical details about the vulnerability's nature. However, a CVSS score of 7.8 indicates a high-severity flaw. This type of vulnerability typically allows a remote, unauthenticated attacker to execute arbitrary code, escalate privileges, or access sensitive information on the affected system. Exploitation would likely involve sending specially crafted data to a vulnerable component of the Rez software, potentially leading to a full system compromise without significant user interaction.
Business Impact
This vulnerability presents a high risk to the organization, as indicated by the CVSS score of 7.8 (High severity). Successful exploitation could lead to significant business disruption, including the compromise of sensitive customer data, reputational damage, and potential financial loss. An attacker could leverage this flaw to disrupt services, cheat within the game environment, or use compromised systems as a pivot point for further attacks into the corporate network.
Remediation Plan
Immediate Action: The primary remediation is to apply the security updates provided by Rez to all affected products without delay. After patching, it is crucial to monitor systems for any signs of compromise that may have occurred before the patch was applied, including reviewing relevant system and application access logs for suspicious activity.
Proactive Monitoring: Implement enhanced monitoring on affected systems. Security teams should look for unusual network traffic patterns, unexpected processes or service behavior, and unauthorized access attempts in authentication logs. Configure security information and event management (SIEM) systems to alert on any activity that matches known indicators of compromise (IOCs) related to this vulnerability, should they become available.
Compensating Controls: If immediate patching is not feasible, consider implementing compensating controls to reduce the attack surface. This may include restricting network access to the vulnerable components, implementing stricter firewall rules to limit traffic from untrusted sources, or deploying an Intrusion Prevention System (IPS) with virtual patching capabilities to block known exploit patterns.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of the publication date of this analysis (January 22, 2026), there are no known public exploits for this vulnerability. The vulnerability is not listed on CISA's Known Exploited Vulnerabilities (KEV) catalog, indicating no widespread, active exploitation has been observed in the wild. However, given the high severity, the development of an exploit by threat actors is a significant possibility.
Analyst Recommendation
Due to the high severity rating of this vulnerability, immediate remediation is strongly recommended. Although there is no evidence of active exploitation at this time, the potential impact of a successful attack is significant. Organizations must prioritize the deployment of vendor-supplied patches across all affected systems to prevent potential compromise.