CVE-2021-47792

HIGH

Remote Mouse 4.002 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-47792. PoCs published by Salman Asad.

AI-analyzed exploit summary This exploit demonstrates an unquoted service path vulnerability in Remote Mouse 4.002, where the service executable path contains spaces and is not enclosed in quotes, allowing potential privilege escalation via path manipulation.

Description

Remote Mouse 4.002 contains an unquoted service path vulnerability that allows local attackers to execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted service path in the RemoteMouseService to inject malicious executables and gain administrative access.

Exploits (1)

exploitdb WORKING POC
by Salman Asad · textlocalwindows
https://www.exploit-db.com/exploits/50258

This exploit demonstrates an unquoted service path vulnerability in Remote Mouse 4.002, where the service executable path contains spaces and is not enclosed in quotes, allowing potential privilege escalation via path manipulation.

Classification
Working Poc 90%
Attack Type
Lpe
Complexity
Trivial
Reliability
Reliable
Target: Remote Mouse 3.008 & 4.002
Auth required
Prerequisites: Local access to the system · Remote Mouse service installed with vulnerable path configuration
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (3)

Core 3
Core References

Scores

CVSS v3 7.8
EPSS 0.0021
EPSS Percentile 10.5%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-428
Status published
Products (2)
remotemouse/remote_mouse 3.008
remotemouse/remote_mouse 4.002
Published Jan 16, 2026
Tracked Since Feb 18, 2026