Natro Macro: कोई भी उपयोगकर्ता Discord RC कमांड के माध्यम से दुर्भावनापूर्ण कार्य कर सकता है

The impact of CVE-2026-28800 is severe, as a malicious actor can leverage Discord Remote Control to execute arbitrary code on a victim's machine. This grants them full control, including keyboard and mouse input, and unrestricted file access. Attackers could steal sensitive data, install malware, or use the compromised system as a launchpad for further attacks within the victim's network. The ease of exploitation, requiring only message-sending permissions in a shared Discord channel, significantly broadens the potential attack surface.

Users of Bee Swarm Simulator who utilize Natro Macro, particularly those who have enabled Discord Remote Control in non-private channels, are at significant risk. Shared hosting environments where multiple users share access to a single Bee Swarm Simulator installation are also vulnerable.

• windows / supply-chain:

Get-Process -Name NatroMacro | Select-Object -ExpandProperty Path

• windows / supply-chain:

Get-ScheduledTask | Where-Object {$_.TaskName -like '*NatroMacro*'}

• windows / supply-chain: Check Autoruns for entries related to Natro Macro or AutoHotkey scripts.

1. 2026-03-06Disclosure

   disclosure

2. 2026-03-06Patch

   patch

1. आरक्षित2026-03-03
2. प्रकाशित2026-03-06
3. EPSS अद्यतन2026-03-23

The primary mitigation for CVE-2026-28800 is to immediately upgrade Natro Macro to version 1.1.0 or later. If upgrading is not feasible due to compatibility issues or system constraints, carefully review Discord Remote Control settings. Ensure that Remote Control is disabled or restricted to private channels only. Consider implementing stricter Discord server permissions to limit message-sending capabilities. After upgrading, confirm the fix by attempting to trigger the Remote Control functionality from a non-private Discord channel; it should be denied.