PT-2026-40578 · Unknown · Bytello Share
Published
2026-05-13
·
Updated
2026-05-13
·
CVE-2026-44612
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Bytello Share (Windows Edition) (affected versions not specified)
Description
The installer executable insecurely loads Dynamic Link Libraries (DLLs), which are shared libraries used by multiple programs. If a crafted DLL is placed in the same directory when the installer is invoked, it can lead to arbitrary code execution with the privileges of the user running the installer. This issue has been exploited for remote code execution.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
RCE
Uncontrolled Search Path Element
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Bytello Share