CVE-2021-35448

HIGH

Emote Interactive Remote Mouse 3.008 - RCE

Title source: llm

Description

Emote Interactive Remote Mouse 3.008 on Windows allows attackers to execute arbitrary programs as Administrator by using the Image Transfer Folder feature to navigate to cmd.exe. It binds to local ports to listen for incoming connections.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Salman Asad · textlocalwindows

https://www.exploit-db.com/exploits/50047

View Code ZIP pw:eip

References (3)

[Exploit, Third Party Advisory] https://deathflash.ml/blog/remote-mouse-lpe

[Exploit, Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/50047

[Exploit, Third Party Advisory] https://leobreaker1411.github.io/blog/cve-2021-35448

Scores

CVSS v3 7.8

EPSS 0.0037

EPSS Percentile 59.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-269

Status published

Products (1)

remotemouse/emote_interactive_studio 3.008

Published Jun 24, 2021

Tracked Since Feb 18, 2026