Описание
open_actions.py in kitty before 0.41.0 does not ask for user confirmation before running a local executable file that may have been linked from an untrusted document (e.g., a document opened in KDE ghostwriter).
Ссылки
- Product
- Exploit
- Patch
- Patch
- ExploitThird Party Advisory
Уязвимые конфигурации
EPSS
4.1 Medium
CVSS3
7.8 High
CVSS3
Дефекты
Связанные уязвимости
open_actions.py in kitty before 0.41.0 does not ask for user confirmation before running a local executable file that may have been linked from an untrusted document (e.g., a document opened in KDE ghostwriter).
open_actions.py in kitty before 0.41.0 does not ask for user confirmat ...
open_actions.py in kitty before 0.41.0 does not ask for user confirmation before running a local executable file that may have been linked from an untrusted document (e.g., a document opened in KDE ghostwriter).
EPSS
4.1 Medium
CVSS3
7.8 High
CVSS3