CVE-2026-22035
HIGH 7.7Greenshot is an open source Windows screenshot utility. Versions 1.3.310 and below arvulnerable to OS Command Injection through unsanitized filename processing. The FormatArguments method in ExternalCommandDestination.cs:269 uses string.Format() to insert user-controlled filenames directly into shell commands without sanitization, allowing attackers to execute arbitrary commands by crafting malicious filenames containing shell metacharacters. This issue is fixed in version 1.3.311.
Affected Applications in Environment
3
Greenshot
v1.2.10.6-RELEASE-c2414cf0149a1475ea00520effc01b40087c225c
159 devices
Greenshot
v1.2.10.6
144 devices
Greenshot
v1.3.296+dbbfbb654e
1 device
Affected Devices
186
ATWOOD-453Z1G3
Windows
DESKTOP-73GV80U
Windows
DPCBRC-23S2LX3
Windows
DPCBRC-49KVY23
Windows
DPCBRC-92S2LX3
Windows
DPCHEM-3RP1Q94
Windows
DPEMAE-3FQBV12
Windows
DPEMAE-8232PP9
Windows
DPEMAE-8232PQN
Windows
DPEMAE-8232PR6
Windows
DPEMAE-8232PRC
Windows
DPEMAE-8232PS0
Windows
DPENGR-5171V98
Windows
DPITED-L240-01
Windows
DPITED-L240-01
Windows
DPITED-L240-01
Windows
DPITED-L240-01
Windows
DPITED-L240-01
Windows
DPITED-L240-01
Windows
DPITED-L240-02
Windows
DPITED-L240-02
Windows
DPITED-L240-02
Windows
DPITED-L240-02
Windows
DPITED-L240-02
Windows
DPITED-L240-02
Windows
DPITED-L240-02
Windows
DPITED-L240-02
Windows
DPITED-L240-02
Windows
DPITED-L240-02
Windows
DPITED-L240-02
Windows
DPITED-L240-03
Windows
DPITED-L240-03
Windows
DPITED-L240-03
Windows
DPITED-L240-03
Windows
DPITED-L240-03
Windows
DPITED-L240-03
Windows
DPITED-L240-03
Windows
DPITED-L240-03
Windows
DPITED-L240-03
Windows
DPITED-L240-03
Windows
DPITED-L240-03
Windows
DPITED-L240-03
Windows
DPITED-L240-04
Windows
DPITED-L240-04
Windows
DPITED-L240-04
Windows
DPITED-L240-04
Windows
DPITED-L240-04
Windows
DPITED-L240-04
Windows
DPITED-L240-04
Windows
DPITED-L240-04
Windows
DPITED-L240-04
Windows
DPITED-L240-04
Windows
DPITED-L240-04
Windows
DPITED-L240-04
Windows
DPITED-L240-05
Windows
DPITED-L240-05
Windows
DPITED-L240-05
Windows
DPITED-L240-05
Windows
DPITED-L240-05
Windows
DPITED-L240-05
Windows
DPITED-L240-05
Windows
DPITED-L240-05
Windows
DPITED-L240-05
Windows
DPITED-L240-05
Windows
DPITED-L240-05
Windows
DPITED-L240-05
Windows
DPITED-L240-06
Windows
DPITED-L240-06
Windows
DPITED-L240-06
Windows
DPITED-L240-06
Windows
DPITED-L240-06
Windows
DPITED-L240-06
Windows
DPITED-L240-06
Windows
DPITED-L240-07
Windows
DPITED-L240-07
Windows
DPITED-L240-07
Windows
DPITED-L240-07
Windows
DPITED-L240-08
Windows
DPITED-L240-08
Windows
DPITED-L240-08
Windows
DPITED-L240-08
Windows
DPITED-L240-08
Windows
DPITED-L240-08
Windows
DPITED-L240-08
Windows
DPITED-L240-08
Windows
DPITED-L240-08
Windows
DPITED-L240-08
Windows
DPITED-L240-09
Windows
DPITED-L240-09
Windows
DPITED-L240-09
Windows
DPITED-L240-09
Windows
DPITED-L240-09
Windows
DPITED-L240-09
Windows
DPITED-L240-09
Windows
DPITED-L240-09
Windows
DPITED-L240-09
Windows
DPITED-L240-09
Windows
DPITED-L240-09
Windows
DPITED-L240-09
Windows
DPITED-L240-09
Windows
DPITED-L240-10
Windows
DPITED-L240-10
Windows
DPITED-L240-10
Windows
DPITED-L240-10
Windows
DPITED-L240-10
Windows
DPITED-L240-10
Windows
DPITED-L240-10
Windows
DPITED-L240-10
Windows
DPITED-L240-10
Windows
DPITED-L240-10
Windows
DPITED-L240-11
Windows
DPITED-L240-11
Windows
DPITED-L240-11
Windows
DPITED-L240-11
Windows
DPITED-L240-11
Windows
DPITED-L240-11
Windows
DPITED-L240-11
Windows
DPITED-L240-11
Windows
DPITED-L240-12
Windows
DPITED-L240-12
Windows
DPITED-L240-12
Windows
DPITED-L240-12
Windows
DPITED-L240-12
Windows
DPITED-L240-12
Windows
DPITED-L240-12
Windows
DPITED-L240-12
Windows
DPITED-L240-12
Windows
DPITED-L240-13
Windows
DPITED-L240-13
Windows
DPITED-L240-13
Windows
DPITED-L240-13
Windows
DPITED-L240-13
Windows
DPITED-L240-13
Windows
DPITED-L240-13
Windows
DPITED-L240-13
Windows
DPITED-L240-13
Windows
DPITED-L240-14
Windows
DPITED-L240-14
Windows
DPITED-L240-14
Windows
DPITED-L240-14
Windows
DPITED-L240-14
Windows
DPITED-L240-14
Windows
DPITED-L240-14
Windows
DPITED-L240-14
Windows
DPITED-L240-15
Windows
DPITED-L240-15
Windows
DPITED-L240-15
Windows
DPITED-L240-15
Windows
DPITED-L240-16
Windows
DPITED-L240-16
Windows
DPITED-L240-16
Windows
DPITED-L240-16
Windows
DPITED-L240-16
Windows
DPITED-L240-16
Windows
DPITED-L240-17
Windows
DPITED-L240-17
Windows
DPITED-L240-17
Windows
DPITED-L240-17
Windows
DPITED-L240-17
Windows
DPITED-L240-17
Windows
DPITED-L240-17
Windows
DPITED-L240-17
Windows
DPITED-L240-17
Windows
DPITED-L240-17
Windows
DPITED-L240-17
Windows
DPITED-L240-17
Windows
DPITED-L240-17
Windows
DPITED-L240-17
Windows
DPITED-L240-17
Windows
DPITED-L240-17
Windows
DPITED-L240-17
Windows
DPITED-L240-17
Windows
DPITED-L240-17
Windows
DPPERS-2521DQL
Windows
DPPERS-3420HLR
Windows
DPREGS-H2WPL84
Windows
DPSFTY-8K4Q7Y3
Windows
ENG305L02
Windows
ENGR405C-D1
Windows
ENGTUTOR-CON
Windows
KANAB-5114457
Windows
PSYCH-KERRY-JOR
Windows
RM348-NR-TPAD
Windows
SOCA-NMCG-XPS15
Windows
TAL-XPS13
Windows
UPEL-P00173
Windows
References
4
- https://github.com/greenshot/greenshot/commit/5dedd5c9f0a9896fa0af1d4980d875a48bf432cb
- https://github.com/greenshot/greenshot/releases/tag/v1.3.311
- https://github.com/greenshot/greenshot/security/advisories/GHSA-7hvw-q8q5-gpmj
- https://github.com/greenshot/greenshot/security/advisories/GHSA-7hvw-q8q5-gpmj