CVE-2026-42454

Termix: OS Command Injection in Docker Container Management Endpoints

Assigner: GitHub_M
Reserved: 27.04.2026 Published: 08.05.2026 Updated: 08.05.2026

Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Prior to version 2.1.0, all Docker container management endpoints in Termix interpolate the containerId URL path parameter and WebSocket message field directly into shell commands executed via ssh2.Client.exec() on remote managed servers without any sanitization or validation. An authenticated attacker can inject arbitrary OS commands by crafting a malicious container ID, achieving Remote Code Execution on any managed server. This issue has been patched in version 2.1.0.

Metrics

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
CVSS Score: 9.9

Attack Vector	Network	Scope	Changed
Attack Complexity	Low	Confidentiality Impact	High
Privileges Required	Low	Integrity Impact	High
User Interaction	None	Availability Impact	High

CVSS 3.1

Product Status

Vendor	Termix-SSH
Product	Termix
Versions	Version < 2.1.0 is affected

Vendor

Termix-SSH

Product

Termix

Versions

Version < 2.1.0 is affected

References

Problem Types

CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') CWE

CVE-2026-42454 PUBLISHED

Termix: OS Command Injection in Docker Container Management Endpoints

Metrics

Product Status

References

Problem Types