CVE-2026-27182

Published: Feb 18, 2026

Modified: Feb 19, 2026

PUBLISHED

CVSS v3.1

8.4

HIGH

Description

Saturn Remote Mouse Server contains a command injection vulnerability that allows unauthenticated attackers to execute arbitrary commands by sending specially crafted UDP JSON frames to port 27000. Attackers on the local network can send malformed packets with unsanitized command data that the service forwards directly to OS execution functions, enabling remote code execution under the service account.

Vendor	Product	Versions
saturnremote	Saturn Remote Mouse Server	affected `*`

Weaknesses (CWE)

CWE-306

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

References

PacketStorm-215835

exploit

Official Product Homepage

product

VulnCheck Advisory: Saturn Remote Mouse Server UDP Command Injection RCE

third-party-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-27182

Description

Affected Products

Weaknesses (CWE)

CVSS v3.1 Details

References