cyberMEDIUM2026-04-18 06:16 UTC

CVE-2026-41253 - iTerm2 SSH Conductor Protocol Remote Code Execution Vulnerability

CVE ID :CVE-2026-41253 Published : April 18, 2026, 6:16 a.m. | 25 minutes ago Description :In iTerm2 through 3.6.9, displaying a .txt file can cause code execution via DCS 2000p and OSC 135 data, if the working directory contains a malicious file whose name is valid output from the conductor e

ORIGINAL SOURCE →via CVE Feed Latest

⚡ STAY AHEAD

Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.

GET THE SUNDAY BRIEFING →

RELATED · cyber

[CYBER] I built a security scanner that outputs Claude Code prompts to fix each vulnerability
[CYBER] Best Cyber Security Course in USA
[CYBER] Seen the cyber side of modern conflicts. Ask questions.
[CYBER] MCP Security Is Broken
[CYBER] CISA flags new SD-WAN flaw as actively exploited in attacks
[CYBER] Unprecedented ruling finds Hungary's anti-LGBTQ laws in breach of EU values

Editorial policy · Report a correction