The host is installed with iTerm2 before 3.3.7 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle insufficient documentation about the presence of search history in com.googlecode.iterm2.plist. Successful exploitation allows remote attackers to obtain sensitive information.