CVE-2022-3365

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Published Jan 28, 2025

Summary

CVE-2022-3365: This vulnerability affects the Remote Mouse Server by Emote Interactive. The issue stems from the product's reliance on a trivial substitution cipher for sensitive data transmitted in cleartext and the utilization of a default password when none is set by the user. Attackers can leverage these weaknesses to inject OS commands over the custom control protocol. A Metasploit module has been developed and verified against version 4.110 of the software.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/m71xc6
https://www.cve.org/CVERecord?id=CVE-2022-3365
https://nvd.nist.gov/vuln/detail/CVE-2022-3365

Back to Vulnerability Database

CVE-2022-3365

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations