ShellHub

Security Risk Profile

/100

low

Security Risk Score

Comprehensive risk assessment based on 4 vulnerabilities, EPSS scores, exploitation status, and remediation availability.

📅 Data spans from May 6, 2026 to present

Total CVEs

Critical+High

Exploited

Unpatched

Threat Assessment

Avg CVSS

6.2

Base severity

Avg EPSS

Exploit probability

Unpatched

Critical/High

Risk Level

37/100

low

📈 4 in Last 30 Days

Severity Distribution

Critical

High

Medium

Low

Exploit Likelihood

>50% chance

20-50%

5-20%

<5%

Age Distribution

Common Weaknesses (CWE)

Input Validation

Most Affected Products

1. go/github.com/shellhub-io/shellhub4

2. ShellHub ShellHub4

Recent Vulnerabilities

See more →

CVE-2026-44426

CVSS 6.5medium

ShellHub: Cross-tenant IDOR in `GET /api/namespaces/:tenant` via API Key bypasses membership check

5/7/2026

CVE-2026-44425

CVSS 5.4medium

ShellHub: Crash-DoS via field injection in filter and sort-by parameters

5/6/2026

CVE-2026-44423

CVSS 6.5medium

ShellHub: Cross-tenant IDOR in `GET /api/sessions/:uid` discloses SSH session data

5/6/2026

CVE-2026-44424

CVSS 6.5medium

ShellHub: Cross-tenant IDOR in `GET /api/devices/:uid` discloses device data of any namespace

5/6/2026

Monitor ShellHub in Real-Time

Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.

Start Free Trial Book a Demo

ShellHub

Security Risk Score

Threat Assessment

Severity Distribution

Exploit Likelihood

Age Distribution

Common Weaknesses (CWE)

Most Affected Products

Recent Vulnerabilities

Monitor ShellHub in Real-Time

Monitor Your Software Stack in Real-Time