Arbitrary code execution vulnerability in iTerm2 via command-line utilities - CVE-2019-9535 (Mac OS X)ID: oval:org.secpod.oval:def:59016 | Date: (C)2019-10-11 (M)2023-11-13 |
Class: VULNERABILITY | Family: macos |
The host is installed with iTerm2 before 3.3.6 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle an issue in the way that iTerm2 integrates with tmux control mode. Successful exploitation allows attackers to execute arbitrary commands on their victim's computer by providing malicious output to the terminal.
Platform: |
Apple Mac OS 11 |
Apple Mac OS X 10.15 |
Apple Mac OS X 10.10 |
Apple Mac OS X 10.11 |
Apple Mac OS X 10.12 |
Apple Mac OS X 10.13 |
Apple Mac OS X 10.14 |