CVE-2026-41253

CVSS 6.9 · Medium EPSS 0.01% · P1 Updated Apr 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-41253

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

In iTerm2 through 3.6.9, displaying a .txt file can cause code execution via DCS 2000p and OSC 135 data, if the working directory contains a malicious file whose name is valid output from the conductor encoding path, such as a pathname with an initial ace/c+ substring, aka "hypothetical in-band signaling abuse." This occurs because iTerm2 accepts the SSH conductor protocol from terminal output that does not originate from a legitimate conductor session.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L

Source: NVD (National Vulnerability Database)

Vulnerability Type

从非可信控制范围包含功能例程

Source: NVD (National Vulnerability Database)

Vulnerability Title

iTerm2 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

iTerm2是George Nachman个人开发者的一款为Mac OS X编写的终端仿真程序。 iTerm2 3.6.9及之前版本存在安全漏洞，该漏洞源于显示.txt文件时可能通过DCS 2000p和OSC 135数据执行代码，因为iTerm2接受来自非合法conductor会话的终端输出的SSH conductor协议。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
iTerm2	iTerm2	0 ~ 3.6.9	-

II. Public POCs for CVE-2026-41253

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2026-41253

请登录查看更多情报信息。

IV. Related Vulnerabilities

Same product: iTerm2

Same vendor: iTerm2

Same weakness: CWE-829

V. Comments for CVE-2026-41253

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2026-41253

I. Basic Information for CVE-2026-41253

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2026-41253

III. Intelligence Information for CVE-2026-41253

IV. Related Vulnerabilities

V. Comments for CVE-2026-41253

Leave a comment