Getgreenshot Greenshot vulnerabilities
4 known vulnerabilities affecting getgreenshot/greenshot.
Total CVEs
4
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH3MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2023-34634P3HIGHCVSS 7.8PoC≤ 1.2.10.62023-08-01
CVE-2023-34634 [HIGH] CVE-2023-34634: Greenshot 1.2.10 and below allows arbitrary code execution because .NET content is insecurely deseri
Greenshot 1.2.10 and below allows arbitrary code execution because .NET content is insecurely deserialized when a .greenshot file is opened.
nvd
CVE-2025-59050P3HIGHCVSS 7.8fixed in 1.3.3012025-09-16
CVE-2025-59050 [HIGH] CWE-502 CVE-2025-59050: Greenshot is an open source Windows screenshot utility. Greenshot 1.3.300 and earlier deserializes a
Greenshot is an open source Windows screenshot utility. Greenshot 1.3.300 and earlier deserializes attacker-controlled data received in a WM_COPYDATA message using BinaryFormatter.Deserialize without prior validation or authentication, allowing a local process at the same integrity level to trigger arbitrary code execution inside the Greenshot process
nvd
CVE-2026-22035P3HIGHCVSS 7.3fixed in 1.3.3112026-01-08
CVE-2026-22035 [HIGH] CWE-78 CVE-2026-22035: Greenshot is an open source Windows screenshot utility. Versions 1.3.310 and below arvulnerable to O
Greenshot is an open source Windows screenshot utility. Versions 1.3.310 and below arvulnerable to OS Command Injection through unsanitized filename processing. The FormatArguments method in ExternalCommandDestination.cs:269 uses string.Format() to insert user-controlled filenames directly into shell commands without sanitization, allowing attackers to
nvd
CVE-2026-25792P4MEDIUMCVSS 6.5≤ 1.3.3122026-03-20
CVE-2026-25792 [MEDIUM] CWE-426 CVE-2026-25792: Greenshot is an open source Windows screenshot utility. Versions 1.3.312 and below have untrusted ex
Greenshot is an open source Windows screenshot utility. Versions 1.3.312 and below have untrusted executable search path / binary hijacking vulnerability that allows a local attacker to execute arbitrary code when the affected Windows application launches explorer.exe without using an absolute path. The vulnerable behavior is triggered when the user
nvd