Enlightenment Terminology vulnerabilities
2 known vulnerabilities affecting enlightenment/terminology.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2015-8971P3HIGHCVSS 7.8v0.7.02017-01-23
CVE-2015-8971 [HIGH] CVE-2015-8971: Terminology 0.7.0 allows remote attackers to execute arbitrary commands via escape sequences that mo
Terminology 0.7.0 allows remote attackers to execute arbitrary commands via escape sequences that modify the window title and then are written to the terminal, a similar issue to CVE-2003-0063.
nvdosv
CVE-2018-20167P3HIGHCVSS 7.8fixed in 1.3.12018-12-17
CVE-2018-20167 [HIGH] CWE-74 CVE-2018-20167: Terminology before 1.3.1 allows Remote Code Execution because popmedia is mishandled, as demonstrate
Terminology before 1.3.1 allows Remote Code Execution because popmedia is mishandled, as demonstrated by an unsafe "cat README.md" command when \e}pn is used. A popmedia control sequence can allow the malicious execution of executable file formats registered in the X desktop share MIME types (/usr/share/applications). The control sequence defers unknow
nvdosv