Tabby

Tabby

4 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2026-45038

Exploit
  • EPSS 0.18%
  • Veröffentlicht 15.05.2026 16:48:12
  • Zuletzt bearbeitet 20.05.2026 17:16:24

Tabby (formerly Terminus) is a highly configurable terminal emulator. Prior to 1.0.233, since Tabby does not escape control characters from file paths when dragging and dropping a file into it, code execution can be achieved. This vulnerability is fi...

7

CVE-2026-45036

  • EPSS 0.13%
  • Veröffentlicht 15.05.2026 16:47:17
  • Zuletzt bearbeitet 20.05.2026 17:16:24

Tabby (formerly Terminus) is a highly configurable terminal emulator. Prior to 1.0.233, Tabby before 1.0.233 automatically confirms ZMODEM protocol detection on all terminal session output without user interaction, enabling shell command execution wh...

8.8

CVE-2026-45035

Exploit
  • EPSS 0.38%
  • Veröffentlicht 15.05.2026 16:41:11
  • Zuletzt bearbeitet 19.05.2026 19:41:53

Tabby (formerly Terminus) is a highly configurable terminal emulator. Prior to 1.0.233, Tabby registers itself as the handler for the tabby:// URL scheme on all platforms. The URL scheme handler supports a run command that directly executes OS comman...

7.1

CVE-2026-45037

  • EPSS 0.14%
  • Veröffentlicht 15.05.2026 16:40:10
  • Zuletzt bearbeitet 19.05.2026 19:27:58

Tabby (formerly Terminus) is a highly configurable terminal emulator. Prior to 1.0.232, Tabby's terminal linkifier passes any detected URI directly to the operating system's protocol handler without validating the protocol scheme. This allows a malic...