5 matches found
CVE-2023-39726
Mintty vulnerable are versions 3.6.4 and earlier to remote code execution via crafted terminal commands. The issue is reported across multiple sources (CVE-2023-39726) and the PT-2023-27086 advisory recommends upgrading to a version later than 3.6.4 to resolve the vulnerability. The connected doc...
CVE-2025-1052
CVE-2025-1052 affects Mintty. The vulnerability arises in the sixel image parsing code, where the length of user-supplied data is not properly validated before copying into a heap-based buffer, leading to a heap-based buffer overflow and remote code execution. Impact is described as requiring use...
CVE-2021-31701
Mintty before 3.4.7 mishandles Bracketed Paste Mode. The issue affects Mintty (terminal emulator) with versions older than 3.4.7 due to incorrect handling of bracketed paste sequences, as documented across multiple sources (NVD entry and vendor reports). Impact details are not elaborated beyond t...
CVE-2022-47583
Summary of CVE-2022-47583 (Mintty) : A terminal-character injection vulnerability in Mintty prior to 3.6.3 enables code execution via unescaped terminal output. The issue affects Mintty’s terminal emulation, allowing an attacker to execute arbitrary commands when output is not properly escaped. P...
CVE-2021-28848
Mintty