Medium severity4.3GHSA Advisory· Published Jan 16, 2025· Updated Apr 15, 2026
CVE-2024-48460
CVE-2024-48460
Description
An issue in Eugeny Tabby 1.0.213 allows a remote attacker to obtain sensitive information via the server and sends the SSH username and password even when the host key verification fails.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
tabby-sshnpm | < 1.0.214 | 1.0.214 |
Affected products
2Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.