Vulnerabilities > Kitty Project

DATE CVE VULNERABILITY TITLE RISK
2022-09-23 CVE-2022-41322 Improper Encoding or Escaping of Output vulnerability in multiple products
In Kitty before 0.26.2, insufficient validation in the desktop notification escape sequence can lead to arbitrary code execution.
local
low complexity
kitty-project fedoraproject CWE-116
7.8
2020-12-21 CVE-2020-35605 The Graphics Protocol feature in graphics.c in kitty before 0.19.3 allows remote attackers to execute arbitrary code because a filename containing special characters can be included in an error message.
network
low complexity
kitty-project debian
critical
9.8