Vulnerabilities (CVE)

Filtered by vendor Rxvt-unicode Project Subscribe

Filtered by product Rxvt-unicode

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2022-4170	2 Fedoraproject, Rxvt-unicode Project	3 Extra Packages For Enterprise Linux, Fedora, Rxvt-unicode	2023-11-14	N/A	9.8 CRITICAL
The rxvt-unicode package is vulnerable to a remote code execution, in the Perl background extension, when an attacker can control the data written to the user's terminal and certain options are set.
CVE-2021-33477	4 Eterm Project, Mrxvt Project, Rxvt-unicode Project and 1 more	4 Eterm, Mrxvt, Rxvt-unicode and 1 more	2021-08-02	6.5 MEDIUM	8.8 HIGH
rxvt-unicode 9.22, rxvt 2.7.10, mrxvt 0.5.4, and Eterm 0.9.7 allow (potentially remote) code execution because of improper handling of certain escape sequences (ESC G Q). A response is terminated by a newline.