CVE-2023-46300

Name of the Vulnerable Software and Affected Versions iTerm2 versions prior to 3.4.20

Description The issue is related to the mishandling of certain escape sequences in iTerm2, specifically those related to tmux integration. This can potentially allow a remote attacker to execute arbitrary code due to the lack of proper output encoding or escaping.

Recommendations For versions prior to 3.4.20, update to version 3.4.20 or later to resolve the issue. As a temporary workaround, consider disabling tmux integration until a patch is available. Restrict access to potentially vulnerable escape sequences to minimize the risk of exploitation.