CVE-2026-43941CRITICAL 9.6EPSS p31.0%

CVE-2026-43941CVE-2026-43941

Description

electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VNC/Spice/ftp client. In versions 3.8.15 and prior, Electerm's terminal hyperlink handler passes any URL clicked in the terminal directly to shell.openExternal without any protocol validation. An attacker who controls terminal output (e.g., via a malicious SSH server, compromised remote host, or malicious plugin rendering terminal content) can thus achieve arbitrary code execution or local file access on the victim's machine, requiring only that the victim clicks a displayed link. At time of publication, there are no publicly available patches.

Scoring

CVSS 3.19.6 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
EPSS0.39% probability of exploitation · percentile 31.0% · 2026-06-19T12:03:05Z
Published2026-05-08
Last modified2026-05-08

Underlying weaknesses· 2

CWE-88CWE-601

References

  1. https://github.com/electerm/electerm/security/advisories/GHSA-fwf6-j56g-m97c

2

TypeTargetConfidenceTier
WeaknessURL Redirection to Untrusted Site ('Open Redirect')cwe-6010%live
WeaknessImproper Neutralization of Argument Delimiters in a Command ('Argument Injection')cwe-880%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-43944
CVE
CVE-2026-43940
CVE
CVE-2026-45353
CVE
CVE-2026-41500
CVE
CVE-2026-41501
CVE
CVE-2026-45058
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.