AI description
CVE-2026-59995 is a path traversal vulnerability found in the `sftp` client of OpenSSH versions prior to 10.4. This flaw arises when a user employs the command "sftp server:/path ." to download files from an attacker-controlled server. The `sftp` client, in this scenario, does not adequately restrict the destination of the downloaded files. This inadequate constraint allows a malicious server to influence the local file operations on the client's system. By exploiting this, an attacker could potentially specify arbitrary local file system locations for downloaded content, leading to the overwriting of critical system files or the placement of malicious payloads in privileged directories.
- Description
- sftp in OpenSSH before 10.4 does not properly constrain the location of downloaded files when "sftp server:/path ." is used with an attacker-controlled server.
- Source
- cve@mitre.org
- NVD status
- Analyzed
- Products
- openssh
CVSS 3.1
- Type
- Primary
- Base score
- 5.4
- Impact score
- 2.5
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
- Severity
- MEDIUM
- cve@mitre.org
- CWE-23
- Hype score
- Not currently trending
OpenSSHの脆弱性(Moderate: CVE-2026-59995, CVE-2026-59996, CVE-2026-59997, CVE-2026-59998, CVE-2026-59999)とOpenSSH 10.4/10.4p1リリース https://t.co/Q33JNZD6fK
@yousukezan
8 Jul 2026
1625 Impressions
3 Retweets
12 Likes
4 Bookmarks
0 Replies
0 Quotes
OpenSSHの脆弱性(Moderate: CVE-2026-59995, CVE-2026-59996, CVE-2026-59997, CVE-2026-59998, CVE-2026-59999)とOpenSSH 10.4/10.4p1リリース #sios_tech #security #vulnerability #セキュリティ #脆弱性 #linux #openssh #ssh https://t.co/iOrr2QHVsE
@omokazuki
8 Jul 2026
125 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
🚨*CVE* CVE-2026-59995 sftp in OpenSSH before 10.4 does not properly constrain the location of downloaded files when "sftp server:/path ." is used with an attacker-controlled server. https://t.co/uwubySVnkT ----- Traducción: CVE-2026-59995 sftp en Open… https://t.co/utmtNgl
@infoflowcloud
8 Jul 2026
40 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*",
"matchCriteriaId": "947E3B1E-F0DF-47BC-87D8-358B55B164AD",
"versionEndExcluding": "10.4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
]