7.6 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.015 Low
EPSS
Percentile
87.0%
rxvt-unicode before 9.20 does not properly handle OSC escape sequences, which allows user-assisted remote attackers to manipulate arbitrary X window properties and execute arbitrary commands.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | rxvt-unicode | < 9.20-1 | rxvt-unicode_9.20-1_all.deb |
Debian | 11 | all | rxvt-unicode | < 9.20-1 | rxvt-unicode_9.20-1_all.deb |
Debian | 999 | all | rxvt-unicode | < 9.20-1 | rxvt-unicode_9.20-1_all.deb |
Debian | 13 | all | rxvt-unicode | < 9.20-1 | rxvt-unicode_9.20-1_all.deb |