CVE-2015-9231

NONE EPSS 80.6%
Published Sep 20, 20178y ago · Modified Jun 17, 20262w ago
Find Similar
Published Sep 20, 2017 8y ago
Last Modified Jun 17, 2026 2w ago

Description

iTerm2 3.x before 3.1.1 allows remote attackers to discover passwords by reading DNS queries. A new (default) feature was added to iTerm2 version 3.0.0 (and unreleased 2.9.x versions such as 2.9.20150717) that resulted in a potential information disclosure. In an attempt to see whether the text under the cursor (or selected text) was a URL, the text would be sent as an unencrypted DNS query. This has the potential to result in passwords and other sensitive information being sent in cleartext without the user being aware.

Threat Intelligence

EPSS Exploit Probability
80.6% percentile
Exploit & Patch Status
Public Exploit Known
No Patch Available

Weaknesses 1

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor Information Exposure

Affected Products 40

VendorProductVersionRange
iterm2iterm22.9.20151111any
iterm2iterm22.9.20151229any
iterm2iterm22.9.20160102any
iterm2iterm22.9.20160113any
iterm2iterm22.9.20160206any
iterm2iterm22.9.20160313any
iterm2iterm22.9.20160422any
iterm2iterm22.9.20160426any
iterm2iterm22.9.20160510any
iterm2iterm22.9.20160523any
iterm2iterm23.0.0any
iterm2iterm23.0.0any
iterm2iterm23.0.1any
iterm2iterm23.0.2any
iterm2iterm23.0.3any
iterm2iterm23.0.4any
iterm2iterm23.0.5any
iterm2iterm23.0.6any
iterm2iterm23.0.7any
iterm2iterm23.0.8any
iterm2iterm23.0.9any
iterm2iterm23.0.10any
iterm2iterm23.0.11any
iterm2iterm23.0.12any
iterm2iterm23.0.13any
iterm2iterm23.0.14any
iterm2iterm23.0.15any
iterm2iterm23.0.20160531any
iterm2iterm23.1.0any
iterm2iterm23.1.0any
iterm2iterm23.1.0any
iterm2iterm23.1.0any
iterm2iterm23.1.0any
iterm2iterm23.1.0any
iterm2iterm23.1.0any
iterm2iterm23.1.0any
iterm2iterm23.1.0any
iterm2iterm23.1.0any
iterm2iterm23.1.0any
iterm2iterm23.1.0any

References 8

  • github.com https://github.com/gnachman/iTerm2/commit/33ccaf61e34ef32ffc9d6b2be5dd218f6bb55f51
    Third Party Advisory
  • github.com https://github.com/gnachman/iTerm2/commit/e4eb1063529deb575b75b396138d41554428d522
    Issue TrackingThird Party Advisory
  • gitlab.com https://gitlab.com/gnachman/iterm2/issues/3688
    Issue TrackingThird Party Advisory
  • gitlab.com https://gitlab.com/gnachman/iterm2/issues/5303
    Issue TrackingThird Party Advisory
  • gitlab.com https://gitlab.com/gnachman/iterm2/issues/6050
    ExploitIssue TrackingThird Party Advisory
  • gitlab.com https://gitlab.com/gnachman/iterm2/issues/6068
    Issue TrackingThird Party Advisory
  • gitlab.com https://gitlab.com/gnachman/iterm2/wikis/dnslookupissue
    Third Party Advisory
  • news.ycombinator.com https://news.ycombinator.com/item?id=15286956
    Issue TrackingThird Party Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.