Devolutions UniGetUI 2026.2.0 and earlier contain an issue where an incorrectly resolved name or reference in the pinget backend can correlate an installed application with an unrelated, attacker‑controlled catalog package. When a user applies the proposed update, the vendor catalog allows the attacker to execute an attacker‑controlled installer whose normalized name is a substring of the installed application name, effectively executing arbitrary code on the local machine. The weakness is a form of input validation failure (CWE‑706), and the primary consequence is unsafe installation of potentially malicious software.

All installations of Devolutions UniGetUI version 2026.2.0 and prior are vulnerable. The product is Devolutions UniGetUI, and any instance that references the pinget backend for package resolution is at risk.

The CVSS score of 7.5 indicates considerable severity, but the EPSS score of less than 1% suggests a very low probability of exploitation in the near term. The vulnerability is not listed in CISA’s KEV catalog. Exploitation requires an attacker to publish a crafted package as a WinGet community catalog contributor; once a user accepts the update, the payload is executed. Because the attack vector relies on community catalog input, it is remotely controllable by the attacker, and the impact is local execution with potential for full compromise of the affected system.