ГлавнаяУязвимости → CVE-2026-40177
7.5высокая

CVE-2026-40177

Описание

ajenti.plugin.core defines all necessary core elements to allow Ajenti to run properly. Prior to 0.112, if the 2FA was activated, it was possible to bypass the password authentication This vulnerability is fixed in 0.112.

Затрагиваемое ПО
Ajenti Ajenti plugin core
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Источники
https://github.com/ajenti/ajenti/security/advisories/GHSA-3mcx-6wxm-qr8v