CVE-2026-30282

CRITICAL

Cast to TV Screen Mirroring 2.2.77 - File Overwrite

Title source: llm

Description

An arbitrary file overwrite vulnerability in UXGROUP LLC Cast to TV Screen Mirroring v2.2.77 allows attackers to overwrite critical internal files via the file import process, leading to arbtrary code execution or information exposure.

References (4)

https://secsys.fudan.edu.cn/

http://cast.com

https://appcraze.co/

https://github.com/Secsys-FDU/AF_CVEs/issues/27

Scores

CVSS v3 9.0

EPSS 0.0005

EPSS Percentile 14.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-22 CWE-73

Status published

Products (1)

uxgroupllc/cast_to_tv 2.2.77

Published Mar 31, 2026

Tracked Since Mar 31, 2026