CVE ID :CVE-2026-41477 Published : April 24, 2026, 8:16 p.m. | 1 hour, 40 minutes ago Description :Deskflow is a keyboard and mouse sharing app. In 1.20.0, 1.26.0.134, and earlier, Deskflow daemon runs as SYSTEM and exposes an IPC named pipe with WorldAccessOption enabled. The daemon processes privileged commands without authentication, allowing any local unprivileged user to execute arbitrary commands as SYSTEM. Affects both stable v1.20.0 + and Continuous v1.26.0.134 prerelease. Severity: 7.8 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...