Vulnerabilities (CVE)

Filtered by vendor Kitty Project Subscribe
Filtered by product Kitty
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-41322 2 Fedoraproject, Kitty Project 2 Fedora, Kitty 2024-11-21 N/A 7.8 HIGH
In Kitty before 0.26.2, insufficient validation in the desktop notification escape sequence can lead to arbitrary code execution. The user must display attacker-controlled content in the terminal, then click on a notification popup.
CVE-2020-35605 2 Debian, Kitty Project 2 Debian Linux, Kitty 2024-11-21 7.5 HIGH 9.8 CRITICAL
The Graphics Protocol feature in graphics.c in kitty before 0.19.3 allows remote attackers to execute arbitrary code because a filename containing special characters can be included in an error message.