Уязвимость CVE-2026-28296

Релиз	Статус	Примечание
devel	not-affected	1.59.90-3
esm-infra/bionic	needs-triage
esm-infra/focal	needs-triage
esm-infra/xenial	needs-triage
jammy	needs-triage
noble	needs-triage
questing	needs-triage
upstream	released	1.59.90-1

CVE-2026-28296

CVSS3: 4.3

redhat

30 дней назад

A flaw was found in the FTP GVfs backend. A remote attacker could exploit this input validation vulnerability by supplying specially crafted file paths containing carriage return and line feed (CRLF) sequences. These unsanitized sequences allow the attacker to terminate intended FTP commands and inject arbitrary FTP commands, potentially leading to arbitrary code execution or other severe impacts.

CVE-2026-28296

CVSS3: 4.3

nvd

29 дней назад

A flaw was found in the FTP GVfs backend. A remote attacker could exploit this input validation vulnerability by supplying specially crafted file paths containing carriage return and line feed (CRLF) sequences. These unsanitized sequences allow the attacker to terminate intended FTP commands and inject arbitrary FTP commands, potentially leading to arbitrary code execution or other severe impacts.

CVE-2026-28296

CVSS3: 4.3

debian

29 дней назад

A flaw was found in the FTP GVfs backend. A remote attacker could expl ...

GHSA-r8j5-pj3m-qhpv

CVSS3: 4.3

github

29 дней назад

A flaw was found in the FTP GVfs backend. A remote attacker could exploit this input validation vulnerability by supplying specially crafted file paths containing carriage return and line feed (CRLF) sequences. These unsanitized sequences allow the attacker to terminate intended FTP commands and inject arbitrary FTP commands, potentially leading to arbitrary code execution or other severe impacts.

SUSE-SU-2026:0923-1

suse-cvrf

9 дней назад

Security update for gvfs

exploitDog

CVE-2026-28296

Описание

Ссылки на источники

Связанные уязвимости

CVE-2026-28296

Описание

Пакет gvfs

Ссылки на источники

Связанные уязвимости