All 7 CVE vulnerabilities found in electerm, with AI-generated Chinese analysis, references, and POCs.
Vendor: electerm
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-43944 | electerm: dangerous code can be run through links or command line CWE-20 | - | - | 2026-05-08 |
| CVE-2026-43942 | electerm: Full process.env exposed to renderer via window.pre.env in electerm CWE-200 | 5.5 | Medium | 2026-05-08 |
| CVE-2026-43941 | Unvalidated shell.openExternal in electerm allows arbitrary protocol execution via terminal link click CWE-88 | 9.6 | Critical | 2026-05-08 |
| CVE-2026-43940 | electerm: Path traversal in electerm runWidget leads to arbitrary code execution CWE-22 | 8.4 | High | 2026-05-08 |
| CVE-2026-43943 | electerm: RCE via malicious SSH server filename in openFileWithEditor CWE-78 | 7.8 | High | 2026-05-08 |
| CVE-2026-41500 | electerm has Command Injection Vulnerability via runMac function CWE-77 | 9.8 | Critical | 2026-05-08 |
| CVE-2026-41501 | electerm has Command Injection Vulnerability via runLinux function CWE-77 | 9.8 | Critical | 2026-05-08 |
All 7 known CVE vulnerabilities affecting electerm with full Chinese analysis, references, and POCs where available.