Primary

Context

ShareMouse Unquoted Service Path Vulnerability Allowing Arbitrary Code Execution

Vulnerability

A vulnerability exists in ShareMouse version 5.0.43 due to an unquoted service path in the ShareMouse Service. This flaw allows local users to execute arbitrary code with elevated privileges. Exploitation involves placing malicious executables in specific system directories, where they can be executed during the service startup.

Impact

Exploitation of this vulnerability could lead to unauthorized execution of code with elevated system privileges.

Reproduction

The vulnerability can be reproduced by placing a malicious executable in a directory that the ShareMouse Service will access during startup. Once the executable is in place, it can be executed with the same elevated privileges as the ShareMouse application.

Added: Jan 28, 2026, 1:30 PM

Updated: Jan 28, 2026, 1:30 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.2

remediation

0.0

relevance

2.4

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.2

remediation

0.0

relevance

2.4

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ShareMouse Unquoted Service Path Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating