By vendor
Termix vulnerabilities
Known CVEs affecting Termix products, prioritized by severity, with SEC.co remediation and detection guidance.
3 published vulnerabilities
- CVE-2026-45743HIGH 8.1
Termix is a web-based platform for managing remote servers via SSH, offering terminal access, port tunneling, and file editing. A critical flaw in 16 file-manager endpoints allows any authenticated user to hijack another user's active SSH session by guessing or learning their session ID. Once hijacked, an attacker gains full file access on the victim's connected server—they can read sensitive files, modify or delete critical data, download files, and execute arbitrary commands. This is a privilege escalation vulnerability: you only need valid credentials to Termix itself, not the target SSH host. The vulnerability has been fixed in version 2.3.2.
- CVE-2026-45749HIGH 8.1
Termix, a web-based server management platform, has a critical flaw in how it protects two-factor authentication (2FA) settings. Before version 2.3.2, an attacker who knows a user's password can disable TOTP (a common 2FA method) or reset backup codes without needing the user's phone or any 2FA code. This means that if your password leaks—whether through phishing, credential stuffing, or a separate data breach—an attacker can lock you out of your 2FA protection and gain full access to your account. The vulnerability has been patched in version 2.3.2.
- CVE-2026-45745HIGH 8.0
Termix Desktop, a web-based server management application built on Electron, has a critical flaw in how it validates HTTPS certificates. Starting from version 1.7.0, the application disables TLS certificate validation entirely, which means attackers on the same network can impersonate the Termix server and intercept all traffic between your desktop client and the management server. This creates a direct path to stealing login credentials and session tokens while you work.