CVE-2026-27182
Awaiting Analysis Awaiting Analysis - Queue
BaseFortify

Publication date: 2026-02-18

Last updated on: 2026-02-19

Assigner: VulnCheck

Description
Saturn Remote Mouse Server contains a command injection vulnerability that allows unauthenticated attackers to execute arbitrary commands by sending specially crafted UDP JSON frames to port 27000. Attackers on the local network can send malformed packets with unsanitized command data that the service forwards directly to OS execution functions, enabling remote code execution under the service account.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-02-18
Last Modified
2026-02-19
Generated
2026-06-16
AI Q&A
2026-02-19
EPSS Evaluated
2026-06-14
NVD
CVE-2026-27182
EUVD
EUVD-2026-7965
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
saturn_remote_mouse_server saturn_remote_mouse_server to unreleased_version (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-306 The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

The vulnerability exists in the Saturn Remote Mouse Server, where it allows unauthenticated attackers to execute arbitrary commands on the system.

Attackers on the local network can send specially crafted UDP JSON frames to port 27000 containing malformed packets with unsanitized command data.

Because the service forwards this command data directly to operating system execution functions without proper sanitization, it enables remote code execution under the service account.

Impact Analysis

This vulnerability can have severe impacts as it allows attackers to execute arbitrary commands remotely on the affected system.

Since the execution happens under the service account, attackers could potentially gain control over the system, leading to data compromise, system disruption, or further network attacks.

The vulnerability requires local network access but does not require any authentication, increasing the risk within internal networks.

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

I don't know

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-27182. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart