CVE-2026-41477

HIGH

Deskflow: Local privilege escalation via unauthenticated IPC

Title source: cna

Description

Deskflow is a keyboard and mouse sharing app. In 1.20.0, 1.26.0.134, and earlier, Deskflow daemon runs as SYSTEM and exposes an IPC named pipe with WorldAccessOption enabled. The daemon processes privileged commands without authentication, allowing any local unprivileged user to execute arbitrary commands as SYSTEM. Affects both stable v1.20.0 + and Continuous v1.26.0.134 prerelease.

References (1)

Core 1

Core References

X_Refsource_Confirm x_refsource_confirm

https://github.com/deskflow/deskflow/security/advisories/GHSA-6rx5-g478-775c

Scores

CVSS v3 7.8

EPSS 0.0022

EPSS Percentile 12.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-306 CWE-862

Status published

Products (3)

deskflow/deskflow 1.20.0 - 1.26.0.161

deskflow/deskflow <= 1.20.0

deskflow/deskflow <= 1.26.0.134

Published Apr 24, 2026

Tracked Since Apr 24, 2026