It's 2020 so not only is your mouse config tool a Node.JS Electron app, it's also pwnable by an evil webpage Malicious JavaScript can inject commands to execute September 30, 2020 https://www.theregister.com/2020/09/30/kensingtonworks_mouse_flaw/ Another RCE vulnerability in KensingtonWorks