CVE-2026-27615

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2026-27615
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-27615.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-27615
Aliases
  • GHSA-3f27-jp2g-hwhr
Published
2026-02-25T02:33:53.553Z
Modified
2026-03-14T12:47:54.339889Z
Severity
  • 8.8 (High) CVSS_V4 - CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H CVSS Calculator
Summary
ADB-Explorer: UNC Path Support in ManualAdbPath Leads to Remote Code Execution (RCE)
Details

ADB Explorer is a fluent UI for ADB on Windows. In versions prior to Beta 0.9.26022, ADB-Explorer allows the ManualAdbPath settings variable, which determines the path of the ADB binary to be executed, to be set to a Universal Naming Convention (UNC) path in the application's settings file. This allows an attacker to set the binary's path to point to a remote network resource, hosted on an attacker-controlled network share, thus granting the attacker full control over the binary being executed by the app. An attacker may leverage this vulnerability to execute code remotely on a victim's machine with the privileges of the user running the app. Exploitation is made possible by convincing a victim to run a shortcut of the app that points to a custom App.txt settings file, which sets ManualAdbPath (for example, when downloaded in an archive file). Version Beta 0.9.26022 fixes the issue.

Database specific 
{
    "cwe_ids": [
        "CWE-40",
        "CWE-829"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/27xxx/CVE-2026-27615.json",
    "cna_assigner": "GitHub_M"
}
References

Affected packages

Git / github.com/Alex4SSB/ADB-Explorer

Affected ranges

Type
GIT
Repo
https://github.com/Alex4SSB/ADB-Explorer
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
84937d171a29daa3753d2a8e83b50a323ee1fe89
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "0.9.26022"
        }
    ]
}

Affected versions

v0.*
v0.7.0
v0.7.1
v0.7.2
v0.7.3
v0.7.4
v0.7.5
v0.7.6
v0.7.7
v0.7.9
v0.7.9001
v0.8.23030
v0.8.23050
v0.8.23060
v0.8.23090
v0.8.23120
v0.8.24030
v0.8.24060
v0.8.24120
v0.8.24121
v0.9.25020
v0.9.25021
v0.9.25022
v0.9.25050
v0.9.25051
v0.9.25052
v0.9.25060
v0.9.25066
v0.9.25070
v0.9.25080
v0.9.25090
v0.9.25100
v0.9.25101
v0.9.25101r
v0.9.25102
v0.9.25110
v0.9.25111
v0.9.26010
v0.9.26011
v0.9.26020
v0.9.26021

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-27615.json"