CVE-2026-45748 in Termixinfo

Summary

by MITRE • 06/05/2026

Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. The `POST /ssh/tunnel/connect` endpoint in Termix prior to version 2.3.2 builds an SSH tunnel command by interpolating user-controlled host record fields (`endpointIP`, `endpointUsername`, `password`) directly into a shell command without escaping, allowing persistent OS command injection on the source SSH host. Version 2.3.2 patches the issue.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsible

GitHub M

Reservation

05/13/2026

Disclosure

06/05/2026

Moderation

accepted

Entry

VDB-368958

CPE

ready

CWE

CWE-78 (confirmed)

CVSS

9.8 (CNA)

EPSS

0.00000

KEV

Activities

low

Sector

Energy, Hospital, ...

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-45748
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-45748
CVE Details	https://www.cvedetails.com/cve/CVE-2026-45748/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!