jumpserver Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by jumpserver
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Unauthorized Access in JumpServer Bastion Host by Low-Privileged Users
CVE-2025-62795JumpserverJumpserver7.1HIGHUnauthorized Access Vulnerability in JumpServer by JumpServer
CVE-2025-62712JumpserverJumpserver9.6CRITICALSecrets Disclosure Vulnerability in JumpServer PAM Tool
CVE-2024-40628JumpserverJumpserver9.1CRITICALAnsible Playbook Exploit Allows Remote Code Execution in Celery Container
CVE-2024-40629JumpserverJumpserver9.8CRITICALJinja2 Template Injection Vulnerability Affects JumpServer's Ansible
CVE-2024-29202JumpserverJumpserverEPSS 81%π°9.9CRITICALArbitrary Code Execution Vulnerability in JumpServer's Ansible Could Lead to Sensitive Information Theft or Database Manipulation
CVE-2024-29201JumpserverJumpserverπΎπ‘EPSS 68%π°9.9CRITICALSSH public key login without private key challenge if mfa is enabled in jumpserver
CVE-2023-42818JumpserverJumpserver9.8CRITICALRemote code execution on the host system via MongoDB shell in jumpserver
CVE-2023-43651JumpserverJumpserverEPSS 13%9.9CRITICALNon-MFA account takeover via brute-force attack on weak password reset code in jumpserver
CVE-2023-43650JumpserverJumpserver7.4HIGHNon-MFA account takeover via using only SSH public key to login in jumpserver
CVE-2023-43652JumpserverJumpserver9.1CRITICALPath traversal in Jumpserver
CVE-2023-42819JumpserverJumpserverπΎπ‘EPSS 37%8.9HIGHRandom seed leakage in Jumpserver
CVE-2023-42820JumpserverJumpserverπΎπ‘EPSS 62%7HIGHAccess Control Issue in Jumpserver by Jumpserver
CVE-2021-3169JumpserverJumpserver9.8CRITICAL