Vulnerabilities > Enlightenment > Terminology

DATE CVE VULNERABILITY TITLE RISK
2018-12-17 CVE-2018-20167 Injection vulnerability in Enlightenment Terminology
Terminology before 1.3.1 allows Remote Code Execution because popmedia is mishandled, as demonstrated by an unsafe "cat README.md" command when \e}pn is used.
6.8
2017-01-23 CVE-2015-8971 Command Injection vulnerability in multiple products
Terminology 0.7.0 allows remote attackers to execute arbitrary commands via escape sequences that modify the window title and then are written to the terminal, a similar issue to CVE-2003-0063.
local
low complexity
debian enlightenment CWE-77
4.6