CRITICAL🇵🇱 Wersja polska

CVE-2022-47583

CVSS 9.8v3.1pub. 2023-10-19upd. 2024-11-21

Terminal character injection in Mintty before 3.6.3 allows code execution via unescaped output to the terminal.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Mintty Project Mintty

    APP
    Mintty Project
    < 3.6.3
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2023-39726CRITICAL9.8ten sam produkt

An issue in Mintty v.3.6.4 and before allows a remote attacker to execute arbitrary code via crafted commands ...

CVE-2025-1052HIGH8.8ten sam produkt

Mintty Sixel Image Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability ...

CVE-2021-31701HIGH7.5ten sam produkt

Mintty before 3.4.7 mishandles Bracketed Paste Mode.

CVE-2021-28848HIGH7.5ten sam produkt

Mintty before 3.4.5 allows remote servers to cause a denial of service (Windows GUI hang) by telling the Mintt...