CVE-2026-59995 - OpenSSH SFTP Path Traversal Vulnerability
CVE ID :CVE-2026-59995
Published : July 8, 2026, 1:16 a.m. | 3 hours, 29 minutes ago
Description :sftp in OpenSSH before 10.4 does not properly constrain the location of downloaded files when "sftp server:/path ." is used with an attacker-controlled server.
Severity: 4.2 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Published : July 8, 2026, 1:16 a.m. | 3 hours, 29 minutes ago
Description :sftp in OpenSSH before 10.4 does not properly constrain the location of downloaded files when "sftp server:/path ." is used with an attacker-controlled server.
Severity: 4.2 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...