CVE-2024-38396 | iTerm2 3.5.0/3.5.1 Window Title code injection

Inserito da Angelo Barbosa | Giu 17, 2024 | CVE

A vulnerability, which was classified as critical, has been found in iTerm2 3.5.0/3.5.1. This issue affects some unknown processing of the component Window Title Handler. The manipulation leads to code injection.

The identification of this vulnerability is CVE-2024-38396. The attack needs to be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-38396 | iTerm2 3.5.0/3.5.1 Window Title code injection

Post correlati

CVE-2024-26367 | Evertz MViP-II Firmware Login Parameter cross site scripting

CVE-2023-3408 | Bricks Plugin up to 1.8.1 on WordPress Setting save_settings cross-site request forgery

CVE-2024-5581 | Allegra unzipFile path traversal (ZDI-24-1164)

CVE-2023-3741 | NEC DT900/DT900S os command injection