CVE-2021-35448

Emote Interactive Remote Mouse 3.008 on Windows allows attackers to execute arbitrary programs as Administrator by using the Image Transfer Folder feature to navigate to cmd.exe. It binds to local ports to listen for incoming connections.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 68%
VendorProductVersion
remotemouseemote_interactive_studio
3.008
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://deathflash.ml/blog/remote-mouse-lpe
https://leobreaker1411.github.io/blog/cve-2021-35448
https://www.exploit-db.com/exploits/50047
https://deathflash.ml/blog/remote-mouse-lpe
https://leobreaker1411.github.io/blog/cve-2021-35448
https://www.exploit-db.com/exploits/50047