PatchSiren cyber security CVE debrief
CVE-2026-59996 OpenBSD CVE debrief
AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-08T01:16:28.557Z and has not been modified since then. The vulnerability exists in the scp functionality of OpenSSH before version 10.4. When copying files between two remote destinations, there is a possibility that a file could be placed in the parent directory of the intended target directory. This issue arises due to how scp handles file paths during the copy operation. Users of OpenSSH versions before 10.4 should review and update their installations to prevent potential file placement in unintended directories.
- Vendor
- OpenBSD
- Product
- OpenSSH
- CVSS
- MEDIUM 4.2
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-07-08
- Original CVE updated
- 2026-07-08
- Advisory published
- 2026-07-08
- Advisory updated
- 2026-07-08
Who should care
Users of OpenSSH versions before 10.4 should review and update their installations to prevent potential file placement in unintended directories. This includes administrators and security teams responsible for maintaining OpenSSH installations.
Technical summary
The vulnerability exists in the scp functionality of OpenSSH before version 10.4. When copying files between two remote destinations, there is a possibility that a file could be placed in the parent directory of the intended target directory. This issue arises due to how scp handles file paths during the copy operation. The CVSS score for this vulnerability is 4.2, classified as MEDIUM severity. The vulnerability can be mitigated by updating OpenSSH to version 10.4 or later.
Defensive priority
Medium priority should be given to updating OpenSSH to version 10.4 or later to mitigate this vulnerability. Additionally, monitoring and review of scp usage and configurations should be conducted.
Recommended defensive actions
- Inventory OpenSSH installations to identify versions before 10.4.
- Update OpenSSH to version 10.4 or later.
- Monitor for unusual file placement in directories.
- Review and adjust scp usage and configurations.
- Verify OpenSSH version in use.
- Check for unauthorized file modifications.
- Implement additional monitoring for suspicious activity.
Evidence notes
Evidence is limited; primary records indicate a potential issue with file placement in OpenSSH before version 10.4. Further verification is recommended. The vulnerability exists in the scp functionality of OpenSSH before version 10.4. When copying files between two remote destinations, there is a possibility that a file could be placed in the parent directory of the intended target directory. This issue arises due to how scp handles file paths during the copy operation.
Official resources
AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-08T01:16:28.557Z and has not been modified since then.