CVE-2024-41997 - Warp Terminal Docker Integration Command Injection Vulnerability

1 month ago 13
ARTICLE AD BOX
CVE ID : CVE-2024-41997
Published : Oct. 14, 2024, 4:15 p.m. | 24 minutes ago
Description : An issue was discovered in version of Warp Terminal prior to 2024.07.18 (v0.2024.07.16.08.02). A command injection vulnerability exists in the Docker integration functionality. An attacker can create a specially crafted hyperlink using the `warp://action/docker/open_subshell` intent that when clicked by the victim results in command execution on the victim's machine.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Read Entire Article