CVE-2026-48827

🗓️ 01 Jun 2026 08:37:41Reported by apacheType

CVE-2026-48827: Apache MINA SSHD sshd-git path traversal exposes git root; upgrade to 2.18.0.

Reporter	Title	Published	Views	Family All 22
ATTACKERKB	CVE-2026-48827	1 Jun 202608:37	–	attackerkb
Circl	CVE-2026-48827	30 May 202612:53	–	circl
CNNVD	Apache MINA SSHD 安全漏洞	1 Jun 202600:00	–	cnnvd
Cvelist	CVE-2026-48827 Apache MINA SSHD: Path traversal in org.apache.sshd:sshd-git	1 Jun 202608:37	–	cvelist
Debian CVE	CVE-2026-48827	1 Jun 202608:37	–	debiancve
EUVD	EUVD-2026-33606	1 Jun 202608:37	–	euvd
NVD	CVE-2026-48827	1 Jun 202609:16	–	nvd
OPENSUSE Linux	apache-sshd-2.18.0-1.1 on GA media (moderate)	3 Jun 202600:00	–	opensuse
OSV	DEBIAN-CVE-2026-48827	1 Jun 202609:16	–	osv
OSV	OPENSUSE-SU-2026:10919-1 apache-sshd-2.18.0-1.1 on GA media	1 Jun 202600:00	–	osv

NVD

Vulners

Node

apache mina_sshdRange2.0.0–2.18.0

apache mina_sshdMatch3.0.0m1

apache mina_sshdMatch3.0.0m2

apache mina_sshdMatch3.0.0m3

[
  {
    "collectionURL": "https://repo.maven.apache.org/maven2",
    "defaultStatus": "unaffected",
    "packageName": "org.apache.sshd:sshd-git",
    "product": "Apache MINA SSHD",
    "vendor": "Apache Software Foundation",
    "versions": [
      {
        "lessThanOrEqual": "2.17.1",
        "status": "affected",
        "version": "2.0.0",
        "versionType": "maven"
      },
      {
        "lessThanOrEqual": "3.0.0-M3",
        "status": "affected",
        "version": "3.0.0-M1",
        "versionType": "maven"
      }
    ]
  }
]

Source	Link
lists	www.lists.apache.org/thread/910kq9ghm6js0k1yhhbrdm9sf5tqq9c9
openwall	www.openwall.com/lists/oss-security/2026/05/30/1

17 Jun 2026 10:55Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.17.1

EPSS0.0078

SSVC

CWE-22