VYPR
Unrated severityNVD Advisory· Published Oct 22, 2023· Updated Sep 11, 2024

CVE-2023-46322

CVE-2023-46322

Description

iTermSessionLauncher.m in iTerm2 before 3.5.0beta12 does not sanitize ssh hostnames in URLs. The hostname's initial character may be non-alphanumeric. The hostname's other characters may be outside the set of alphanumeric characters, dash, and period.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Gnachman/Iterm2cpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: <3.5.0beta12

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.