Impact
An attacker who can cause a victim to view attacker-controlled terminal output in Warp can use the lack of verification of state‑mutating lifecycle hooks to spoof metadata. This allows the spoofed metadata to include the current working directory or SSH transport details, leading to misleading session information. The flaw is a direct consequence of accepting hooks from the PTY stream without validating their origin and is classified under CWE-78 and CWE-88.
Affected Systems
Warps the open‑source agentic development environment with product code name Warp. The vulnerability exists in releases starting from 0.2021.04.25.23.05.stable_00 through 0.2026.05.06.15.42.stable_01. Any installation of these versions running on a machine where an attacker can inject terminal output is impacted.
Risk and Exploitability
The CVSS score of 4.3 indicates moderate impact. Exploitation requires that the attacker is able to steer terminal output to the vulnerable Warp instance, which is commonly a local or user‑level threat. The EPSS score is unavailable, and the vulnerability is not currently listed in CISA KEV. Given the lack of remote code execution, the immediate risk is the ability to deceive users by presenting incorrect session information rather than allowing arbitrary code execution.
OpenCVE Enrichment