| CVE-2026-41501 |
critical |
9.8 |
9.8 |
20d ago |
electerm has Command Injection via runLinux funtion |
|
| CVE-2026-41500 |
critical |
9.8 |
9.8 |
20d ago |
electerm: electerm_install_script_CommandInjection Vulnerability Report |
|
| CVE-2026-43944 |
critical |
9.6 |
9.6 |
20d ago |
Electerm users can run dangrous code through link or command line |
|
| CVE-2026-43941 |
critical |
9.6 |
9.6 |
20d ago |
Electerm has an unvalidated shell.openExternal that allows arbitrary protocol execution via terminal link click |
|
| CVE-2026-45353 |
critical |
— |
9.5 |
14d ago |
Electerm Local code through electerm's single-instance socket |
|
| CVE-2026-45058 |
critical |
— |
9.5 |
14d ago |
Electerm: Importing unsafe bookmark data could lead to unsafe operation when clicking local type bookmark |
|
| CVE-2020-23256 |
critical |
— |
9.5 |
3y ago |
electerm allows unauthorized users to execute arbitrary commands |
|
| CVE-2026-43940 |
high |
8.4 |
8.4 |
20d ago |
Electerm runWidget has a path traversal that leads to arbitrary code execution |
|
| CVE-2026-43943 |
high |
7.8 |
7.8 |
20d ago |
Electerm Security Vulnerability: RCE via malicious SSH server filename in openFileWithEditor |
|
| CVE-2026-45787 |
medium |
— |
5.5 |
14d ago |
electerm's encrypt method not safe enough |
|
| CVE-2026-43942 |
medium |
5.5 |
5.5 |
20d ago |
Electerm's full process.env exposed to renderer via window.pre.env |
|