Path traversal in OpenSSH - CVE-2026-59995
Published: July 15, 2026
OpenSSH
Detailed vulnerability description
The vulnerability allows a remote attacker to write files to an unexpected location.
The vulnerability exists due to improper path restriction in sftp(1) when downloading files on the command line using a remote path and a local dot destination. A remote attacker can operate a malicious server to write files to an unexpected location.