Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2023-39150 | 1 Maximus5 | 1 Conemu | 2024-02-28 | N/A | 9.8 CRITICAL |
ConEmu before commit 230724 does not sanitize title responses correctly for control characters, potentially leading to arbitrary code execution. This is related to an incomplete fix for CVE-2022-46387. | |||||
CVE-2022-46387 | 2 Cmder, Maximus5 | 2 Cmder, Conemu | 2024-02-28 | N/A | 9.8 CRITICAL |
ConEmu through 220807 and Cmder before 1.3.21 report the title of the terminal, including control characters, which allows an attacker to change the title and then execute it as commands. |