Dennis Dast

**Name of the Vulnerable Software and Affected Versions** KDE Konsole versions prior to 25.04.2 **Description** The issue is related to the implementation of incorrect control flow in KDE Konsole when handling URL schemes such as telnet://, rlogin://, and ssh://. This can allow a remote attacker to execute arbitrary code when a user visits a specially crafted website and allows the loading of certain URL schemes in their web browser. The vulnerability is exploited when Konsole falls back to using /bin/bash for the given arguments if the corresponding binary (ssh, telnet, or rlogin) is not available. **Recommendations** For KDE Konsole versions prior to 25.04.2, update to version 25.04.2 or later to resolve the issue. As a temporary workaround, consider disabling the handling of URL schemes such as telnet://, rlogin://, and ssh:// in Konsole to minimize the risk of exploitation. Restrict access to the vulnerable Konsole terminal emulator to prevent remote code execution. Avoid using the `telnet://`, `rlogin://`, and `ssh://` URL schemes in web browsers until the issue is resolved.