Vulnerability Description
Greenshot is an open source Windows screenshot utility. Versions 1.3.312 and below have untrusted executable search path / binary hijacking vulnerability that allows a local attacker to execute arbitrary code when the affected Windows application launches explorer.exe without using an absolute path. The vulnerable behavior is triggered when the user double-clicks the application’s tray icon, which opens the directory containing the most recent screenshot captured by the application. By placing a malicious executable with the same name in a location searched prior to the legitimate Windows binary, an attacker can gain code execution in the context of the application. This issue did not have a patch at the time of publication.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Getgreenshot | Greenshot | <= 1.3.312 |
Related Weaknesses (CWE)
References
- https://github.com/greenshot/greenshot/security/advisories/GHSA-f8v9-7fph-fr2jExploitMitigationVendor Advisory
FAQ
What is CVE-2026-25792?
CVE-2026-25792 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Greenshot is an open source Windows screenshot utility. Versions 1.3.312 and below have untrusted executable search path / binary hijacking vulnerability that allows a local attacker to execute arbitr...
How severe is CVE-2026-25792?
CVE-2026-25792 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-25792?
Check the references section above for vendor advisories and patch information. Affected products include: Getgreenshot Greenshot.