CVE-2025-49091

Name of the Vulnerable Software and Affected Versions KDE Konsole versions prior to 25.04.2

Description The issue is related to the implementation of incorrect control flow in KDE Konsole when handling URL schemes such as telnet://, rlogin://, and ssh://. This can allow a remote attacker to execute arbitrary code when a user visits a specially crafted website and allows the loading of certain URL schemes in their web browser. The vulnerability is exploited when Konsole falls back to using /bin/bash for the given arguments if the corresponding binary (ssh, telnet, or rlogin) is not available.

Recommendations For KDE Konsole versions prior to 25.04.2, update to version 25.04.2 or later to resolve the issue. As a temporary workaround, consider disabling the handling of URL schemes such as telnet://, rlogin://, and ssh:// in Konsole to minimize the risk of exploitation. Restrict access to the vulnerable Konsole terminal emulator to prevent remote code execution. Avoid using the telnet://, rlogin://, and ssh:// URL schemes in web browsers until the issue is resolved.