Description
electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VNC/Spice/ftp client. Prior to 3.9.5, deterministic AES-192-CBC with a fixed zero IV, constant KDF salt, and no MAC leads to confidentiality and integrity failures for synced bookmark/profile data. Attackers can crack common passwords across installs and perform undetected ciphertext bit-flips to alter config/bookmarks. This vulnerability is fixed in 3.9.5.
Published: 2026-05-28
Score: 6 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Electerm encrypts synced bookmark and profile data using a deterministic AES‑192‑CBC cipher with a fixed zero IV, a constant KDF salt, and no MAC. The lack of randomness and integrity protection means an attacker who can read or manipulate the encrypted data can recover the plaintext with common passwords and silently modify configuration entries through bit‑flips, resulting in both confidentiality loss and integrity violations of user data.

Affected Systems

The affected product is Electerm, the open‑source terminal client. Versions prior to 3.9.5 are impacted, regardless of the operating system on which the client runs, because the cryptographic flaw is in the core encryption routines.

Risk and Exploitability

The CVSS score of 6.0 rates this flaw as moderate, and the EPSS score is not available. It is also not in the CISA KEV catalog. Exploitation requires an attacker that can read or supply the encrypted configuration; the deterministic nature of the cipher makes brute‑force cracking of common passwords feasible, and bit‑flipping can be performed without detection. The likely attack vector is a local or remote attacker with sufficient privileges to access the client’s profile data, or an adversary who exploits another weakness that allows them to alter the stored messages.

Generated by OpenCVE AI on May 28, 2026 at 19:35 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Electerm to version 3.9.5 or later to replace the weak encryption with a randomized IV and MAC protection.
  • Delete or clear existing synced bookmark and profile data before upgrading to prevent attackers from exploiting the old deterministic ciphertext.
  • If an upgrade is not immediately feasible, change the passwords used for the client profiles and consider storing critical configuration externally with stronger encryption.

Generated by OpenCVE AI on May 28, 2026 at 19:35 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-g29v-q6h7-76wh electerm's encrypt method not safe enough
History

Thu, 28 May 2026 19:45:00 +0000

Type Values Removed Values Added
First Time appeared Electerm
Electerm electerm
Vendors & Products Electerm
Electerm electerm

Thu, 28 May 2026 18:00:00 +0000

Type Values Removed Values Added
Description electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VNC/Spice/ftp client. Prior to 3.9.5, deterministic AES-192-CBC with a fixed zero IV, constant KDF salt, and no MAC leads to confidentiality and integrity failures for synced bookmark/profile data. Attackers can crack common passwords across installs and perform undetected ciphertext bit-flips to alter config/bookmarks. This vulnerability is fixed in 3.9.5.
Title electerm's encrypt method not safe enough
Weaknesses CWE-326
CWE-329
CWE-353
CWE-759
CWE-916
References
Metrics cvssV4_0

{'score': 6, 'vector': 'CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Electerm Electerm
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-05-28T17:17:56.385Z

Reserved: 2026-05-13T08:19:32.602Z

Link: CVE-2026-45787

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-05-28T18:16:35.977

Modified: 2026-05-28T18:16:35.977

Link: CVE-2026-45787

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-28T19:45:25Z

Weaknesses