PT-2026-40578 · Unknown · Bytello Share

Published

2026-05-13

·

Updated

2026-05-13

·

CVE-2026-44612

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Bytello Share (Windows Edition) (affected versions not specified)
Description The installer executable insecurely loads Dynamic Link Libraries (DLLs), which are shared libraries used by multiple programs. If a crafted DLL is placed in the same directory when the installer is invoked, it can lead to arbitrary code execution with the privileges of the user running the installer. This issue has been exploited for remote code execution.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Uncontrolled Search Path Element

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-44612

Affected Products

Bytello Share