ajenti-plugin-core

PyPI2 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting ajenti-plugin-corepage 1 of 1

CVE-2026-40177HIGHCVSS 7.5EG 7.5✓ Fixed in 0.112
2026-04-10
vulnerable: 0.1 ... 0.99 (103 versions)
ajenti.plugin.core defines all necessary core elements to allow Ajenti to run properly. Prior to 0.112, if the 2FA was activated, it was possible to bypass the password authentication This vulnerability is fixed in 0.112.
CVE-2026-40178MEDIUMCVSS 5.9EG 5.9✓ Fixed in 0.112
2026-04-10
vulnerable: 0.1 ... 0.99 (103 versions)
ajenti.plugin.core defines all necessary core elements to allow Ajenti to run properly. Prior to 0.112, if the 2FA was activated, it was possible during a short moment after the authentication of an user to bypass its authentication. This …

Check whether ajenti-plugin-core is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for ajenti-plugin-core CVEs against the assets you own.

Start Free Scan →