Description
Bytello Share (Windows Edition) installer executable provided by Bytello insecurely loads Dynamic Link Libraries. If there is a crafted DLL at the same directory when invoking the affected installer, arbitrary code may be executed with the privilege of the user invoking the installer.
Published: 2026-05-13
Score: 8.4 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Bytello Share (Windows Edition) installer loads dynamic link libraries from the directory it is run in. If an attacker places a malicious DLL in that same folder before launching the installer, the DLL is loaded and its code executed with the privileges of the user running the installer. This flaw allows attackers to run arbitrary code with local user privileges, potentially compromising the system. The weakness is classified as insecure DLL search order (CWE-427).

Affected Systems

The vulnerability affects Bytello Share Windows Edition installer executables distributed by Bytello. No specific version range is provided in the advisory, so all supplied installers made available at the time of this note are considered potentially affected.

Risk and Exploitability

The CVSS base score of 8.4 marks it as high‑severity, and no EPSS score is reported. It is not listed in the CISA KEV catalog. Based on the description, it is inferred that the attacker’s ability to supply a DLL in the installer’s run directory allows the installer to load it, executing code with the installing user’s privileges. This effectively means the attack vector is local file placement, and the attacker only needs write access to the installation folder and enough local privileges to run the installer. The breadth of impact depends on the installing user’s rights; administrators who install the product pose the highest risk within an organization.

Generated by OpenCVE AI on May 13, 2026 at 08:50 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Download the latest Bytello Share installer from the official source and verify its digital signature before execution.
  • Run the installer from a trusted, empty directory and remove any pre‑existing DLLs that could be selected by the installer.
  • Enforce application whitelisting or enable Windows Defender Credential Guard to prevent unauthorized DLL loading during installation.
  • Apply system patching or configure policy to restrict users from creating or modifying DLLs in the installer directory.

Generated by OpenCVE AI on May 13, 2026 at 08:50 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 13 May 2026 11:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 13 May 2026 11:00:00 +0000

Type Values Removed Values Added
First Time appeared Bytello
Bytello bytello Share (windows Edition) Installer Executable
Vendors & Products Bytello
Bytello bytello Share (windows Edition) Installer Executable

Wed, 13 May 2026 09:00:00 +0000

Type Values Removed Values Added
Title Insecure DLL loading in Bytello Share Windows Installer enabling arbitrary code execution

Wed, 13 May 2026 06:00:00 +0000

Type Values Removed Values Added
Description Bytello Share (Windows Edition) installer executable provided by Bytello insecurely loads Dynamic Link Libraries. If there is a crafted DLL at the same directory when invoking the affected installer, arbitrary code may be executed with the privilege of the user invoking the installer.
Weaknesses CWE-427
References
Metrics cvssV3_0

{'score': 7.8, 'vector': 'CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}

cvssV4_0

{'score': 8.4, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Bytello Bytello Share (windows Edition) Installer Executable
cve-icon MITRE

Status: PUBLISHED

Assigner: jpcert

Published:

Updated: 2026-05-13T10:49:34.155Z

Reserved: 2026-05-07T06:22:30.124Z

Link: CVE-2026-44612

cve-icon Vulnrichment

Updated: 2026-05-13T10:48:11.747Z

cve-icon NVD

Status : Deferred

Published: 2026-05-13T06:16:14.610

Modified: 2026-05-13T15:47:10.327

Link: CVE-2026-44612

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-13T10:34:44Z

Weaknesses