Known Vulnerabilities for products from Shellhub
Listed below are 4 of the newest known vulnerabilities associated with the vendor "Shellhub".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-44426 json | ShellHub is a centralized SSH gateway. Prior to 0.24.2, GET /api/namespaces/:tenant returns the full namespace object — inc... | Not Provided | 2026-05-13 | 2026-05-14 |
| CVE-2026-44425 json | ShellHub is a centralized SSH gateway. Prior to 0.24.2, the device list endpoint accepts user-controlled identifiers in the t... | Not Provided | 2026-05-13 | 2026-05-18 |
| CVE-2026-44424 json | ShellHub is a centralized SSH gateway. Prior to 0.24.2, GET /api/devices/:uid returns the full device object whenever the cal... | Not Provided | 2026-05-13 | 2026-05-18 |
| CVE-2026-44423 json | ShellHub is a centralized SSH gateway. Prior to 0.24.2, GET /api/sessions/:uid returns the full session object for any authen... | Not Provided | 2026-05-13 | 2026-05-15 |