CVE-2026-41253

Name of the Vulnerable Software and Affected Versions iTerm2 versions prior to 3.7.0

Description Displaying a .txt file can lead to code execution through the use of DCS 2000p and OSC 135 data. This occurs when the working directory contains a malicious file with a name that serves as valid output from the conductor encoding path, such as a pathname starting with the substring ace/c+. The issue stems from the software accepting the SSH conductor protocol from terminal output that does not originate from a legitimate conductor session.

Recommendations Update to a version newer than 3.6.9.