7 matches found
EUVD-2023-42891
Malicious code in bioql PyPI...
CVE-2022-46387
ConEmu through 220807 and Cmder before 1.3.21 report the title of the terminal, including control characters, which allows an attacker to change the title and then execute it as commands...
Remote code execution
ConEmu before commit 230724 does not sanitize title responses correctly for control characters, potentially leading to arbitrary code execution. This is related to an incomplete fix for CVE-2022-46387...
CVE-2023-39150
ConEmu before commit 230724 does not sanitize title responses correctly for control characters, potentially leading to arbitrary code execution. This is related to an incomplete fix for CVE-2022-46387...
CVE-2022-46387
ConEmu through 220807 and Cmder before 1.3.21 report the title of the terminal, including control characters, which allows an attacker to change the title and then execute it as commands...
CVE-2022-46387
CVE-2022-46387 affects ConEmu up to 220807 and Cmder up to 1.3.21, where terminal title strings can include control characters that are then executed as commands. The root cause is lack of sanitization of title responses containing control characters, enabling arbitrary command execution. Impact ...
CVE-2022-46387
ConEmu through 220807 and Cmder before 1.3.21 report the title of the terminal, including control characters, which allows an attacker to change the title and then execute it as commands...