Vulnerabilities (CVE)

Filtered by vendor Maximus5 Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-39150 1 Maximus5 1 Conemu 2024-02-28 N/A 9.8 CRITICAL
ConEmu before commit 230724 does not sanitize title responses correctly for control characters, potentially leading to arbitrary code execution. This is related to an incomplete fix for CVE-2022-46387.
CVE-2022-46387 2 Cmder, Maximus5 2 Cmder, Conemu 2024-02-28 N/A 9.8 CRITICAL
ConEmu through 220807 and Cmder before 1.3.21 report the title of the terminal, including control characters, which allows an attacker to change the title and then execute it as commands.