Kitty Project Kitty vulnerabilities
2 known vulnerabilities affecting kitty_project/kitty.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2025-43929HIGHCVSS 7.8fixed in 0.41.02025-04-20
CVE-2025-43929 [HIGH] CWE-346 CVE-2025-43929: open_actions.py in kitty before 0.41.0 does not ask for user confirmation before running a local exe
open_actions.py in kitty before 0.41.0 does not ask for user confirmation before running a local executable file that may have been linked from an untrusted document (e.g., a document opened in KDE ghostwriter).
nvdosv
CVE-2022-41322HIGHCVSS 7.8fixed in 0.26.22022-09-23
CVE-2022-41322 [HIGH] CWE-116 CVE-2022-41322: In Kitty before 0.26.2, insufficient validation in the desktop notification escape sequence can lead
In Kitty before 0.26.2, insufficient validation in the desktop notification escape sequence can lead to arbitrary code execution. The user must display attacker-controlled content in the terminal, then click on a notification popup.
nvdosv