GHSA-73jv-44c3-j5p2: Ajenti has an authorization bypass during custom package installation
highvulnerability
security
Summary
This advisory describes GHSA-73jv-44c3-j5p2, an authorization bypass vulnerability in Ajenti (a system management tool) that occurs during custom package installation. The provided content explains the framework used to measure vulnerability severity (attack vector, complexity, required privileges, and potential impacts on confidentiality, integrity, and availability), but does not describe the actual vulnerability details or how it works.
Vulnerability Details
EPSS (30-day exploit probability)
EPSS: 0.0%
Patch Available
Yes
Disclosure Date
April 2, 2026
Classification
Attack SophisticationModerate
Affected Packages
ajenti-panel@< 2.2.15 (fixed: 2.2.15)
Monthly digest — independent AI security research
Original source: https://github.com/advisories/GHSA-73jv-44c3-j5p2
First tracked: April 3, 2026 at 02:00 AM
Classified by LLM (prompt v3) · confidence: 95%