CVE Catalog

CVE-2026-45746

CriticalCVSS 9.0
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.03%

8th percentile — higher than 8% of all known CVEs

Summary

Termix is a server management platform that prior to version 2.3.2 contained a critical Broken Access Control vulnerability in the File Manager functionality. The issue stemmed from improper validation of the sessionId parameter, allowing an attacker to access other users' File Manager sessions.

Risk Assessment

Exploitation of this vulnerability allows unauthorized interaction with other users' remote VPS filesystems, potentially leading to serious security breaches and data loss.

Recommendation

It is recommended to upgrade to version 2.3.2 or later to patch this vulnerability and secure access to the File Manager.

Original NVD description (English source)

Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Prior to version 2.3.2, the File Manager functionality in Termix contains a critical Broken Access Control vulnerability due to improper validation of the sessionId parameter. The backend trusts a client-controlled identifier without verifying that it belongs to the authenticated user. This allows an attacker to manipulate the value and access active File Manager sessions belonging to other users. Since these sessions are tied to SSH connections to remote VPS instances, exploitation allows unauthorized interaction with another user's remote filesystem. Because the File Manager exposes functionality such as file reading, writing, uploading, and execution, this vulnerability enables direct command execution on another user's VPS (RCE). Version 2.3.2 patches the issue.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS