10 matches found
CVE-2019-13475
CVE-2019-13475 affects Mobatek MobaXterm 11.1. The vulnerability is in the mobaxterm: URI handler, enabling an argument injection that allows an attacker to execute arbitrary commands when a user visits a crafted URL. The payload can inject -exec to run commands, with -hideterm and -exitwhendone ...
CVE-2022-38336
CVE-2022-38336 affects Mobatek MobaXterm prior to 22.1. The issue is an access-control flaw that allows attackers to connect to the server via SSH or SFTP without authentication. Public details describe the root cause as auth bypass in the SSH/SFTP handling; impact is high (unauthorized access). ...
CVE-2022-38337
CVE-2022-38337 affects Mobatek MobaXterm prior to v22.1, where aborting a SFTP connection sends a hardcoded password to the server, which the server may treat as an invalid login and trigger a user DoS (e.g., via fail2ban). Root cause is hardcoded credentials during SFTP abort. Impact is Denial o...
CVE-2017-15376
Mobatek MobaXterm 10.4 is affected by CVE-2017-15376 due to a TELNET service that does not require authentication, allowing remote command execution via TCP port 23. The vulnerability is rooted in the TELNET service configuration, enabling an unauthenticated attacker to execute arbitrary commands...
CVE-2017-6805
CVE-2017-6805 : Affected product is MobaXterm Personal Edition 9.4. The issue is a directory traversal vulnerability in the TFTP server that can be triggered by a GET request containing .., allowing remote attackers to read arbitrary files. Public references (NVD, Nessus plugin, Exploit-DB entrie...
CVE-2019-7690
The CVE affects Mobatek MobaXterm Personal Edition v11.1 Build 3860. In this version, the SSH private key and its password can be retrieved from process memory for the lifetime of the process, even after disconnecting from the remote SSH server. This impacts Passwordless Authentication that uses ...
CVE-2015-7244
Mobatek MobaXterm prior to version 8.3 is affected by CVE-2015-7244 due to a default server configuration that disables access control and does not require authentication for X11 connections. This allows a remote attacker to execute arbitrary commands or view/inject X11 data via port 6000, using ...
CVE-2019-16305
CVE-2019-16305 affects Mobatek MobaXterm 11.1 and 12.1. The protocol handler is vulnerable to command injection: a crafted MobaXterm protocol link prompts the user to run MobaXterm to handle the link, then prompts for further confirmation, enabling command execution (demonstrated via MobaXterm://...
CVE-2021-28847
CVE-2021-28847 affects Mobatek MobaXterm prior to 21.0. A remote attacker can cause a denial of service (Windows GUI hang) by sending rapid, repeated tab title change requests, leading to many SetWindowTextA/SetWindowTextW calls. Exploitation is network-based, with low attack complexity and no us...
CVE-2026-25866
MobaXterm versions prior to 26.1 are affected by an Unquoted Search Path vulnerability. The app uses WinExec to launch Notepad++ without a fully qualified executable path when opening remote files. An attacker can place a malicious executable earlier in the search order, leading to arbitrary code...