Remotemouse Emote Remote Mouse vulnerabilities
6 known vulnerabilities affecting remotemouse/emote_remote_mouse.
Total CVEs
6
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2021-27573P2CRITICALCVSS 9.8PoC≤ 4.0.0.02021-05-07
CVE-2021-27573 [CRITICAL] CWE-862 CVE-2021-27573: An issue was discovered in Emote Remote Mouse through 4.0.0.0. Remote unauthenticated users can exec
An issue was discovered in Emote Remote Mouse through 4.0.0.0. Remote unauthenticated users can execute arbitrary code via crafted UDP packets with no prior authorization or authentication.
nvd
CVE-2021-27572P3HIGHCVSS 8.1≤ 4.0.0.02021-05-07
CVE-2021-27572 [HIGH] CWE-294 CVE-2021-27572: An issue was discovered in Emote Remote Mouse through 4.0.0.0. Authentication Bypass can occur via P
An issue was discovered in Emote Remote Mouse through 4.0.0.0. Authentication Bypass can occur via Packet Replay. Remote unauthenticated users can execute arbitrary code via crafted UDP packets even when passwords are set.
nvd
CVE-2021-27574P3HIGHCVSS 8.1≤ 4.0.0.02021-05-07
CVE-2021-27574 [HIGH] CWE-319 CVE-2021-27574: An issue was discovered in Emote Remote Mouse through 4.0.0.0. It uses cleartext HTTP to check, and
An issue was discovered in Emote Remote Mouse through 4.0.0.0. It uses cleartext HTTP to check, and request, updates. Thus, attackers can machine-in-the-middle a victim to download a malicious binary in place of the real update, with no SSL errors or warnings.
nvd
CVE-2021-27570P4MEDIUMCVSS 5.3≤ 3.0152021-05-07
CVE-2021-27570 [MEDIUM] CWE-306 CVE-2021-27570: An issue was discovered in Emote Remote Mouse through 3.015. Attackers can close any running process
An issue was discovered in Emote Remote Mouse through 3.015. Attackers can close any running process by sending the process name in a specially crafted packet. This information is sent in cleartext and is not protected by any authentication logic.
nvd
CVE-2021-27571P4MEDIUMCVSS 5.3≤ 4.0.0.02021-05-07
CVE-2021-27571 [MEDIUM] CWE-306 CVE-2021-27571: An issue was discovered in Emote Remote Mouse through 4.0.0.0. Attackers can retrieve recently used
An issue was discovered in Emote Remote Mouse through 4.0.0.0. Attackers can retrieve recently used and running applications, their icons, and their file paths. This information is sent in cleartext and is not protected by any authentication logic.
nvd
CVE-2021-27569P4MEDIUMCVSS 5.3≤ 4.0.0.02021-05-07
CVE-2021-27569 [MEDIUM] CWE-306 CVE-2021-27569: An issue was discovered in Emote Remote Mouse through 4.0.0.0. Attackers can maximize or minimize th
An issue was discovered in Emote Remote Mouse through 4.0.0.0. Attackers can maximize or minimize the window of a running process by sending the process name in a crafted packet. This information is sent in cleartext and is not protected by any authentication logic.
nvd