CVE-2026-58423
Severity CVSS v4.0:
Pending analysis
Type:
CWE-287
Authentication Issues
Publication date:
03/07/2026
Last modified:
03/07/2026
Description
LFS authentication bypass via malformed SSH sub-verb allows unauthorized read access to private repositories
Impact
Base Score 3.x
7.70
Severity 3.x
HIGH



