Iterm2
1 CVEs
product
Monthly
iTerm2 3.5.6 through 3.5.10 before 3.5.11 sometimes allows remote attackers to obtain sensitive information from terminal commands by reading the /tmp/framer.txt file. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Python
Information Disclosure
Iterm2
NVD
CVSS 3.1
9.3
EPSS
0.1%
CVE-2025-22275
EPSS 0%
CVSS 9.3
CRITICAL
This Week
iTerm2 3.5.6 through 3.5.10 before 3.5.11 sometimes allows remote attackers to obtain sensitive information from terminal commands by reading the /tmp/framer.txt file. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Python
Information Disclosure
Iterm2
NVD