Improper Neutralization of Argument Delimiters in a Command in OpenSSH - CVE-2026-59997
Published: July 15, 2026
OpenSSH
Detailed vulnerability description
The vulnerability allows a remote user to bypass security-relevant SFTP server options.
The vulnerability exists due to improper input handling in the internal-sftp SFTP server implementation when processing long command lines. A remote privileged user can supply a command line with security-relevant options placed after the ninth argument to bypass security-relevant SFTP server options.
Only configurations using the internal-sftp SFTP server implementation are affected.