CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2023-39726
https://notcve.org/view.php?id=CVE-2023-39726
26 Oct 2023 — An issue in Mintty v.3.6.4 and before allows a remote attacker to execute arbitrary code via crafted commands to the terminal. Un problema en Mintty v.3.6.4 y anteriores permite a un atacante remoto ejecutar código arbitrario mediante comandos manipulados en la terminal. • https://dgl.cx/2023/09/ansi-terminal-security#mintty-osc50 • CWE-96: Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection') •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 1CVE-2022-47583
https://notcve.org/view.php?id=CVE-2022-47583
19 Oct 2023 — Terminal character injection in Mintty before 3.6.3 allows code execution via unescaped output to the terminal. La inyección de caracteres de terminal en Mintty anterior a 3.6.3 permite la ejecución de código a través de salida sin escape al terminal. • https://dgl.cx/2023/09/ansi-terminal-security#mintty • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-31701
https://notcve.org/view.php?id=CVE-2021-31701
06 Jun 2021 — Mintty before 3.4.7 mishandles Bracketed Paste Mode. Mintty versiones anteriores a 3.4.7, maneja inapropiadamente el modo Bracketed Paste • https://github.com/mintty/mintty/releases/tag/3.4.7 • CWE-755: Improper Handling of Exceptional Conditions •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-28848
https://notcve.org/view.php?id=CVE-2021-28848
03 Jun 2021 — Mintty before 3.4.5 allows remote servers to cause a denial of service (Windows GUI hang) by telling the Mintty window to change its title repeatedly at high speed, which results in many SetWindowTextA or SetWindowTextW calls. In other words, it does not implement a usleep or similar delay upon processing a title change. Mintty versiones anteriores a 3.4.5, permite a los servidores remotos causar una denegación de servicio (suspensión de la GUI de Windows) al decirle a la ventana de Mintty que cambie su tít... • https://github.com/mintty/mintty/commit/bd52109993440b6996760aaccb66e68e782762b9 • CWE-770: Allocation of Resources Without Limits or Throttling •