Lucene search
CertccCVELIST:CVE-2019-9535HistoryOct 09, 2019 - 12:00 a.m.
CVE-2019-9535 iTerm2, up to and including version 3.3.5, with tmux integration is vulnerable to remote command execution
2019-10-0900:00:00
CWE-349
certcc
www.cve.org
A vulnerability exists in the way that iTerm2 integrates with tmux’s control mode, which may allow an attacker to execute arbitrary commands by providing malicious output to the terminal. This affects versions of iTerm2 up to and including 3.3.5. This vulnerability may allow an attacker to execute arbitrary commands on their victim’s computer by providing malicious output to the terminal. It could be exploited using command-line utilities that print attacker-controlled content.
CNA Affected
[
{
"product": "iTerm2",
"vendor": "iTerm2",
"versions": [
{
"lessThanOrEqual": "3.3.5",
"status": "affected",
"version": "3.3.5",
"versionType": "custom"
}
]
}
]Related
symantec
symantec
iTerm2 CVE-2019-9535 Remote Command Execution Vulnerability
2019-10-09 00:00:00
prion
prion
Command injection
2019-10-09 20:15:00
cert
cert
iTerm2 with tmux integration is vulnerable to remote command execution
2019-10-09 00:00:00
attackerkb
attackerkb
iTerm2 with tmux integration is vulnerable to remote command execution
2019-10-09 00:00:00
thn
thn
7-Year-Old Critical RCE Flaw Found in Popular iTerm2 macOS Terminal App
2019-10-09 18:38:00
cisa
cisa
iTerm2 Vulnerability
2019-10-09 00:00:00
osv
osv
CVE-2019-9535
2019-10-09 20:15:33
cve
cve
CVE-2019-9535
2019-10-09 20:15:33
nvd
nvd
CVE-2019-9535
2019-10-09 20:15:33