A vulnerability labeled as critical has been found in Termix-SSH Termix up to 2.3.1 . Affected by this issue is some unknown functionality of the file /users/totp/disable . The manipulation results in use of single-factor authentication. This vulnerability is reported as CVE-2026-45749 . The attack can be launched remotely. No exploit exists. The affected component should be upgraded.