CVE-2026-33156
DLL Sideloading in ScreenToGif
CVSS Score
7.8
EPSS Score
0.0%
EPSS Percentile
4th
ScreenToGif is a screen recording tool. In versions from 2.42.1 and prior, ScreenToGif is vulnerable to DLL sideloading via version.dll . When the portable executable is run from a user-writable directory, it loads version.dll from the application directory instead of the Windows System32 directory, allowing arbitrary code execution in the user's context. This is especially impactful because ScreenToGif is primarily distributed as a portable application intended to be run from user-writable locations. At time of publication, there are no publicly available patches.
| CWE | CWE-426 CWE-427 |
| Vendor | nickemanarin |
| Product | screentogif |
| Published | Mar 20, 2026 |
| Last Updated | Mar 27, 2026 |
Stay Ahead of the Next One
Get instant alerts for nickemanarin screentogif
Be the first to know when new high vulnerabilities affecting nickemanarin screentogif are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Affected Versions
NickeManarin / ScreenToGif
<= 2.42.1