CVE-2025-49148

Name of the Vulnerable Software and Affected Versions ClipShare versions prior to 3.8.5

Description ClipShare is a lightweight and cross-platform tool for clipboard sharing. The issue arises because ClipShare Server for Windows uses the default Windows DLL search order, loading system libraries like CRYPTBASE.dll and WindowsCodecs.dll from its own directory before the system path. This allows a local, non-privileged user who can write to the folder containing clip share.exe to place malicious DLLs there, leading to arbitrary code execution in the context of the server. If the server is launched by an Administrator or another elevated user, it results in a reliable local privilege escalation.

Recommendations For versions prior to 3.8.5, update to version 3.8.5 to resolve the issue. As a temporary workaround, consider restricting write access to the folder containing clip share.exe to prevent malicious DLL placement.