CVE-2026-54591
AsyncSSH (Python) prior to 2.23.1 is vulnerable to SCP path traversal: a malicious SSH server can craft filenames with ../, since _parse_cd_args returns server-provided names verbatim and _recv_files joins them to the destination path without enforcing directory boundaries, enabling arbitrary fil...