CVE-2024-38395

CRITICAL

iTerm2 <3.5.2 - RCE

Title source: llm

Description

In iTerm2 before 3.5.2, the "Terminal may report window title" setting is not honored, and thus remote code execution might occur but "is not trivially exploitable."

Exploits (1)

github SUSPICIOUS 19 stars

by vin01 · dockerfilepoc

https://github.com/vin01/poc-cve-2024-38396

View Code ZIP pw:eip

References (5)

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2024/06/17/1

[Patch] https://gitlab.com/gnachman/iterm2/-/commit/f1e89f78dd72dcac3ba66d3d6f93db3f7f649219

[Release Notes] https://gitlab.com/gnachman/iterm2/-/tags/v3.5.2

[Product] https://iterm2.com/downloads.html

[Mailing List] https://www.openwall.com/lists/oss-security/2024/06/15/1

Scores

CVSS v3 9.8

EPSS 0.0946

EPSS Percentile 92.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-94

Status published

Products (1)

iterm2/iterm2 3.5.0 - 3.5.2

Published Jun 16, 2024

Tracked Since Feb 18, 2026