CVE-2026-22035

Опубликовано: 08 янв. 2026

Источник: nvd

CVSS3: 7.7

CVSS3: 7.3

EPSS Низкий

Описание

Greenshot is an open source Windows screenshot utility. Versions 1.3.310 and below arvulnerable to OS Command Injection through unsanitized filename processing. The FormatArguments method in ExternalCommandDestination.cs:269 uses string.Format() to insert user-controlled filenames directly into shell commands without sanitization, allowing attackers to execute arbitrary commands by crafting malicious filenames containing shell metacharacters. This issue is fixed in version 1.3.311.

Ссылки

https://github.com/greenshot/greenshot/commit/5dedd5c9f0a9896fa0af1d4980d875a48bf432cb
Patch
https://github.com/greenshot/greenshot/releases/tag/v1.3.311
Release Notes
https://github.com/greenshot/greenshot/security/advisories/GHSA-7hvw-q8q5-gpmj
Vendor Advisory
Exploit
https://github.com/greenshot/greenshot/security/advisories/GHSA-7hvw-q8q5-gpmj
Vendor Advisory
Exploit

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:getgreenshot:greenshot:*:*:*:*:*:*:*:*

Версия до 1.3.311 (исключая)

EPSS

Процентиль: 11%

0.00037

Низкий

7.7 High

CVSS3

7.3 High

CVSS3

Дефекты

CWE-78

EPSS

Процентиль: 11%

0.00037

Низкий

7.7 High

CVSS3

7.3 High

CVSS3

Дефекты

CWE-78