MEDIUM6.4CVE-2023-43651Jumpserver Koko vulnerable to remote code execution on the host system via MongoDB shell
>= 2.0.0, < 2.28.20
—CVE-2023-42818SSH public key login without private key challenge if mfa is enabled in jumpserver in github.com/jumpserver/koko in github.com/jumpserver/jumpserver