Lucene search
K

110 matches found

OSV
OSV
added 2021/05/07 7:31 p.m.5 views

CVE-2021-27571

An issue was discovered in Emote Remote Mouse through 4.0.0.0. Attackers can retrieve recently used and running applications, their icons, and their file paths. This information is sent in cleartext and is not protected by any authentication logic...

5.3CVSS5.8AI score0.01148EPSS
Exploits1References2
Prion
Prion
added 2021/05/07 7:31 p.m.17 views

Authentication flaw

An issue was discovered in Emote Remote Mouse through 4.0.0.0. Attackers can maximize or minimize the window of a running process by sending the process name in a crafted packet. This information is sent in cleartext and is not protected by any authentication logic...

5CVSS5.4AI score0.00637EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2021/05/07 7:31 p.m.22 views

Design/Logic Flaw

An issue was discovered in Emote Remote Mouse through 4.0.0.0. It uses cleartext HTTP to check, and request, updates. Thus, attackers can machine-in-the-middle a victim to download a malicious binary in place of the real update, with no SSL errors or warnings...

6.8CVSS8AI score0.01078EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2021/05/07 7:31 p.m.17 views

Authentication flaw

An issue was discovered in Emote Remote Mouse through 4.0.0.0. Remote unauthenticated users can execute arbitrary code via crafted UDP packets with no prior authorization or authentication...

7.5CVSS9.8AI score0.14195EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2021/05/07 7:31 p.m.18 views

Authentication flaw

An issue was discovered in Emote Remote Mouse through 3.015. Attackers can close any running process by sending the process name in a specially crafted packet. This information is sent in cleartext and is not protected by any authentication logic...

5CVSS5.4AI score0.01387EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2021/05/07 7:31 p.m.17 views

Design/Logic Flaw

An issue was discovered in Emote Remote Mouse through 4.0.0.0. Attackers can retrieve recently used and running applications, their icons, and their file paths. This information is sent in cleartext and is not protected by any authentication logic...

5CVSS5.5AI score0.01148EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2021/05/07 4:32 p.m.31 views

CVE-2021-27574

An issue was discovered in Emote Remote Mouse through 4.0.0.0. It uses cleartext HTTP to check, and request, updates. Thus, attackers can machine-in-the-middle a victim to download a malicious binary in place of the real update, with no SSL errors or warnings...

8.2AI score0.01078EPSS
Exploits1References2
CVE
CVE
added 2021/05/07 4:32 p.m.38 views

CVE-2021-27574

The CVE-2021-27574 issue affects Emote Remote Mouse up to version 4.0.0.0, where the update mechanism uses cleartext HTTP to check and fetch updates. This design enables a man-in-the-middle attacker to replace a legitimate update with a malicious binary without triggering SSL errors or warnings. ...

8.1CVSS8.4AI score0.01078EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2021/05/07 4:32 p.m.63 views

CVE-2021-27573

CVE-2021-27573 affects Emote Remote Mouse (up to version 4.0.0.0). The issue allows remote unauthenticated users to execute arbitrary code by sending crafted UDP packets, without prior authorization or authentication. Red Hat and CNVD entries reiterate that this vulnerability originates from unau...

9.8CVSS9.8AI score0.14195EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2021/05/07 4:32 p.m.33 views

CVE-2021-27573

An issue was discovered in Emote Remote Mouse through 4.0.0.0. Remote unauthenticated users can execute arbitrary code via crafted UDP packets with no prior authorization or authentication...

10AI score0.14195EPSS
Exploits1References2
CVE
CVE
added 2021/05/07 4:32 p.m.42 views

CVE-2021-27572

The CVE-2021-27572 issue affects Emote Remote Mouse (up to version 4.0.0.0). The root cause is an authentication bypass via crafted UDP packets triggering a packet replay, enabling remote unauthenticated users to execute arbitrary code. Multiple sources (NVD, Red Hat advisory) corroborate that a ...

8.1CVSS8.9AI score0.03248EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2021/05/07 4:32 p.m.22 views

CVE-2021-27572

An issue was discovered in Emote Remote Mouse through 4.0.0.0. Authentication Bypass can occur via Packet Replay. Remote unauthenticated users can execute arbitrary code via crafted UDP packets even when passwords are set...

8.7AI score0.03248EPSS
Exploits1References2
Cvelist
Cvelist
added 2021/05/07 4:31 p.m.21 views

CVE-2021-27571

An issue was discovered in Emote Remote Mouse through 4.0.0.0. Attackers can retrieve recently used and running applications, their icons, and their file paths. This information is sent in cleartext and is not protected by any authentication logic...

5.7AI score0.01148EPSS
Exploits1References2
CVE
CVE
added 2021/05/07 4:31 p.m.36 views

CVE-2021-27571

CVE-2021-27571 affects Emote Remote Mouse up to version 4.0.0.0. The issue allows an attacker to retrieve recently used and running applications, their icons, and their file paths. The data is sent in cleartext and not protected by any authentication logic. Connected documents confirm the affecte...

5.3CVSS6.4AI score0.01148EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2021/05/07 4:31 p.m.42 views

CVE-2021-27570

CVE-2021-27570 affects Emote Remote Mouse (≤3.015). An attacker can remotely close any running process by sending the process name in a crafted packet. The affected communications are sent in cleartext and lack authentication, enabling network-based exploitation with low complexity and no privile...

5.3CVSS6.4AI score0.01387EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2021/05/07 4:31 p.m.28 views

CVE-2021-27570

An issue was discovered in Emote Remote Mouse through 3.015. Attackers can close any running process by sending the process name in a specially crafted packet. This information is sent in cleartext and is not protected by any authentication logic...

5.7AI score0.01387EPSS
Exploits1References2
Cvelist
Cvelist
added 2021/05/07 4:31 p.m.20 views

CVE-2021-27569

An issue was discovered in Emote Remote Mouse through 4.0.0.0. Attackers can maximize or minimize the window of a running process by sending the process name in a crafted packet. This information is sent in cleartext and is not protected by any authentication logic...

5.7AI score0.00637EPSS
Exploits1References2
CVE
CVE
added 2021/05/07 4:31 p.m.39 views

CVE-2021-27569

CVE-2021-27569 affects Emote Remote Mouse (up to version 4.0.0.0). Red Hat and CNVD entries confirm a vulnerability where an attacker can maximize or minimize a running process window by sending the process name in a crafted packet. The issue is transmitted in cleartext and lacks authentication p...

5.3CVSS6.3AI score0.00637EPSS
Exploits1References2Affected Software1
The Hacker News
The Hacker News
added 2021/05/07 1:20 p.m.53 views

6 Unpatched Flaws Disclosed in Remote Mouse App for Android and iOS

As many as six zero-days have been uncovered in an application called Remote Mouse, allowing a remote attacker to achieve full code execution without any user interaction. The unpatched flaws, collectively named 'Mouse Trap,' were disclosed on Wednesday by security researcher Axel Persinger, who...

9.8CVSS2.4AI score0.14195EPSS
Exploits6
CNNVD
CNNVD
added 2021/05/07 12:0 a.m.4 views

Emote Remote Mouse 安全漏洞

Remote Mouse is a remote mouse application. A security vulnerability exists in Emote Remote Mouse 4.0.0.0 and earlier versions, which can be exploited by an attacker to maximize or minimize the window of a running process by sending the process name in a crafted packet...

5.3CVSS5.7AI score0.00637EPSS
Exploits1References2
Rows per page
Query Builder