Описание
In Kitty before 0.26.2, insufficient validation in the desktop notification escape sequence can lead to arbitrary code execution. The user must display attacker-controlled content in the terminal, then click on a notification popup.
Ссылки
- ExploitIssue TrackingPatchThird Party Advisory
- Patch
- Patch
- Third Party Advisory
- Release NotesVendor Advisory
- ExploitIssue TrackingPatchThird Party Advisory
- Patch
- Patch
- Third Party Advisory
- Release NotesVendor Advisory
Уязвимые конфигурации
Одно из
EPSS
7.8 High
CVSS3
Дефекты
Связанные уязвимости
In Kitty before 0.26.2, insufficient validation in the desktop notification escape sequence can lead to arbitrary code execution. The user must display attacker-controlled content in the terminal, then click on a notification popup.
In Kitty before 0.26.2, insufficient validation in the desktop notific ...
In Kitty before 0.26.2, insufficient validation in the desktop notification escape sequence can lead to arbitrary code execution. The user must display attacker-controlled content in the terminal, then click on a notification popup.
EPSS
7.8 High
CVSS3