CVE-2026-45745 - Vulnerability Details

- Termix has improper certificate validation in Electron desktop client that enables MITM credential/token theft

Description

Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Starting in version 1.7.0, Termix Desktop (Electron) disables TLS certificate validation, allowing a machine-in-the-middle attacker to intercept and modify HTTPS traffic to the configured Termix server. This can lead to credential theft and JWT/session theft during login and normal use. As of time of publication, no known patched versions are available.

Published: 2026-06-05

Score: 8 High

EPSS: n/a

KEV: No

Impact:

Action:

Analysis

Impact

Termix Desktop, the Electron-based client for Termix, disables TLS certificate validation starting with version 1.7.0. This flaw allows a network attacker to perform a man‑in‑the‑middle attack, intercept and modify HTTPS traffic to the configured Termix server, capturing credentials entered during login and JWT/session tokens used during normal use. The weakness is a classic certificate validation error (CWE‑295), resulting in a loss of confidentiality for user credentials and tokens. An attacker does not need privileged access to the Termix server; only the ability to interpose on the client‑to‑server connection is required.

Affected Systems

The vulnerability affects Termix Desktop, the Electron client for the Termix web‑based server management platform, for all releases version 1.7.0 and later. No fixed version is currently available.

Risk and Exploitability

The CVSS score is 8.0, indicating high severity. The EPSS score is not available, and the vulnerability is not listed in the CISA KEV catalog. The most likely attack vector is a compromised local network or an attacker capable of reflecting traffic to the client. Because no patch has been released, the risk remains high for all users of Termix Desktop 1.7.0 or newer who have not isolated themselves from potential MITM traffic.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Termix-SSH

Termix

affected

Version	Status	Constraints
`>= 1.7.0, <= 2.2.1`	affected	—

No data.

No data available yet.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Reject self‑signed or untrusted TLS certificates by configuring the operating system or firewall to block Termix Desktop connections to such certificates.
Isolate Termix Desktop traffic by using network segmentation or a VPN so that the client communicates only over trusted links.
Monitor outbound traffic from Termix Desktop for certificate anomalies and consider disabling or upgrading the client when a patched version becomes available.
Disable the 'allow insecure connections' option if present, or use the command line flag to enforce certificate validation, if supported by the application.

Generated by OpenCVE AI on June 5, 2026 at 20:05 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Exploitation poc

Automatable no

Technical Impact total

References

Link	Providers
https://github.com/Termix-SSH/Termix/security/advisories/GHSA-r9gw-3w87-mhh7

History

Fri, 05 Jun 2026 20:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Fri, 05 Jun 2026 18:15:00 +0000

Type	Values Removed	Values Added
Description		Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Starting in version 1.7.0, Termix Desktop (Electron) disables TLS certificate validation, allowing a machine-in-the-middle attacker to intercept and modify HTTPS traffic to the configured Termix server. This can lead to credential theft and JWT/session theft during login and normal use. As of time of publication, no known patched versions are available.
Title		Termix has improper certificate validation in Electron desktop client that enables MITM credential/token theft
Weaknesses		CWE-295
References		https://github.com/Termix-SSH/Termix/security/advisories/GHSA-r9gw-3w87-mhh7
Metrics		cvssV3_1 `{'score': 8, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N'}`

Subscriptions

No data.

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2026-06-05T17:53:54.278Z

Updated: 2026-06-05T19:39:58.240Z

Reserved: 2026-05-13T06:54:34.220Z

Link: CVE-2026-45745

Vulnrichment

Updated: 2026-06-05T19:39:52.955Z

NVD

Status : Undergoing Analysis

Published: 2026-06-05T18:17:30.180

Modified: 2026-06-05T20:17:32.110

Link: CVE-2026-45745

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-05T20:15:09Z

Weaknesses

CWE-295

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction Required

Exploitation poc

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object