Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1020 CNY

100%
Buy Us a Coffee

shellhub — Vulnerabilities & Security Advisories 4

All 4 CVE vulnerabilities found in shellhub, with AI-generated Chinese analysis, references, and POCs.

Vendor: shellhub-io

CVE IDTitleCVSSSeverityPublished
CVE-2026-44423 ShellHub: Cross-tenant IDOR in `GET /api/sessions/:uid` discloses SSH session data CWE-639 6.5 Medium2026-05-13
CVE-2026-44424 ShellHub: Cross-tenant IDOR in `GET /api/devices/:uid` discloses device data of any namespace CWE-639 6.5 Medium2026-05-13
CVE-2026-44426 ShellHub: Cross-tenant IDOR in `GET /api/namespaces/:tenant` via API Key bypasses membership check CWE-639 6.5 Medium2026-05-13
CVE-2026-44425 ShellHub: Crash-DoS via field injection in filter and sort-by parameters CWE-20 5.4 Medium2026-05-13

All 4 known CVE vulnerabilities affecting shellhub with full Chinese analysis, references, and POCs where available.