CVE-2026-44296
- EPSS 0.28%
- Veröffentlicht 12.05.2026 20:52:59
- Zuletzt bearbeitet 13.05.2026 16:10:57
Deskflow is a keyboard and mouse sharing app. Prior to 1.26.0.167, a remote, unauthenticated denial of service (DoS) vulnerability affects Deskflow servers running with TLS enabled (the default). When any TCP peer connects to the listening port and i...
CVE-2026-41477
- EPSS 0.22%
- Veröffentlicht 24.04.2026 19:50:21
- Zuletzt bearbeitet 28.04.2026 15:46:28
Deskflow is a keyboard and mouse sharing app. In 1.20.0, 1.26.0.134, and earlier, Deskflow daemon runs as SYSTEM and exposes an IPC named pipe with WorldAccessOption enabled. The daemon processes privileged commands without authentication, allowing ...
CVE-2026-41476
- EPSS 0.34%
- Veröffentlicht 24.04.2026 19:47:45
- Zuletzt bearbeitet 28.04.2026 15:47:41
Deskflow is a keyboard and mouse sharing app. Prior to 1.26.0.138, a remote memory-safety vulnerability in Deskflow's clipboard deserialization allows a connected peer to trigger an out-of-bounds read by sending a malformed clipboard update. The iss...