CVE-2026-45746
CriticalCVSS 9.0Exploitation Probability (EPSS)
Low risk8th percentile — higher than 8% of all known CVEs
Summary
Termix is a server management platform that prior to version 2.3.2 contained a critical Broken Access Control vulnerability in the File Manager functionality. The issue stemmed from improper validation of the sessionId parameter, allowing an attacker to access other users' File Manager sessions.
Risk Assessment
Exploitation of this vulnerability allows unauthorized interaction with other users' remote VPS filesystems, potentially leading to serious security breaches and data loss.
Recommendation
It is recommended to upgrade to version 2.3.2 or later to patch this vulnerability and secure access to the File Manager.
Original NVD description (English source)
Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Prior to version 2.3.2, the File Manager functionality in Termix contains a critical Broken Access Control vulnerability due to improper validation of the sessionId parameter. The backend trusts a client-controlled identifier without verifying that it belongs to the authenticated user. This allows an attacker to manipulate the value and access active File Manager sessions belonging to other users. Since these sessions are tied to SSH connections to remote VPS instances, exploitation allows unauthorized interaction with another user's remote filesystem. Because the File Manager exposes functionality such as file reading, writing, uploading, and execution, this vulnerability enables direct command execution on another user's VPS (RCE). Version 2.3.2 patches the issue.

