CVE 9.6 CRITICAL

Unvalidated shell.openExternal in electerm allows arbitrary protocol execution via terminal link click_CVE-2026-43941

May 7, 2026 invoker category_cve

9.6 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Description

electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VNC/Spice/ftp client. In versions 3.8.15 and prior, Electerm's terminal hyperlink handler passes any URL clicked in the terminal directly to shell.openExternal without any protocol validation. An attacker who controls terminal output (e.g., via a malicious SSH server, compromised remote host, or malicious plugin rendering terminal content) can thus achieve arbitrary code execution or local file access on the victim's machine, requiring only that the victim clicks a displayed link. At time of publication, there are no publicly available patches.

AI Analysis

Unvalidated shell.openExternal in electerm allows arbitrary protocol execution via terminal link click

Basic Information

ID CVE-2026-43941

Source GitHub_M

Published May 8, 2026 at 03:01

Affected Product

Vendor electerm

Product electerm

Version <= 3.8.15

Affected Versions electerm electerm <= 3.8.15

CWE Classification

CWE-88 CWE-601

AI Assessment

AI Score 9.6 / 10

AI Severity Critical

Vendor electerm

Product electerm

Version <= 3.8.15

References

github.com /electerm/electerm/security/advisories/GHSA-fwf6-j56g-m97c

{
    "lastseen": "",
    "description": "electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VNC/Spice/ftp client. In versions 3.8.15 and prior, Electerm's terminal hyperlink handler passes any URL clicked in the terminal directly to shell.openExternal without any protocol validation. An attacker who controls terminal output (e.g., via a malicious SSH server, compromised remote host, or malicious plugin rendering terminal content) can thus achieve arbitrary code execution or local file access on the victim's machine, requiring only that the victim clicks a displayed link. At time of publication, there are no publicly available patches.",
    "published": "2026-05-08T03:01:12.461Z",
    "modified": "2026-05-08T03:01:12.461Z",
    "type": "cve",
    "title": "Unvalidated shell.openExternal in electerm allows arbitrary protocol execution via terminal link click",
    "source": "GitHub_M",
    "references": "https://github.com/electerm/electerm/security/advisories/GHSA-fwf6-j56g-m97c",
    "id": "CVE-2026-43941",
    "bulletinFamily": "",
    "cwe": [
        "CWE-88",
        "CWE-601"
    ],
    "cvelist": null,
    "sourceData": "electerm electerm <= 3.8.15",
    "sourceHref": "",
    "cvss": {
        "score": 9.6,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "electerm",
    "version": "<= 3.8.15",
    "vendor": "electerm",
    "ai_description": "Unvalidated shell.openExternal in electerm allows arbitrary protocol execution via terminal link click",
    "ai_severity": "Critical",
    "ai_vendor": "electerm",
    "ai_product": "electerm",
    "ai_version": "<= 3.8.15",
    "ai_score": 9.6
}

💭 Join the Security Discussion ❌ Cancel Reply