Description
A remote code execution vulnerability exists in Xterm.js when the component mishandles special characters, aka "Xterm Remote Code Execution Vulnerability." This affects xterm.js.
Remediation
References
http://www.securityfocus.com/bid/106434
https://access.redhat.com/errata/RHBA-2019:0959
https://access.redhat.com/errata/RHSA-2019:1422
https://access.redhat.com/errata/RHSA-2019:2552
https://access.redhat.com/errata/RHSA-2019:2551
https://github.com/xtermjs/xterm.js/releases
Related Vulnerabilities
CVE-2021-23337 Vulnerability in maven package org.webjars.npm:lodash.template
CVE-2021-21277 Vulnerability in maven package org.webjars.npm:angular-expressions
CVE-2023-46243 Vulnerability in maven package org.xwiki.platform:xwiki-platform-oldcore
CVE-2018-1270 Vulnerability in maven package org.springframework:spring-messaging
CVE-2023-37909 Vulnerability in maven package org.xwiki.platform:xwiki-platform-menu-ui