HIGH
seaweedfs
CVE published 2026-06-25
CVE-2026-54917
CVE-2026-54917 is a high-severity vulnerability in SeaweedFS, a distributed storage system for object storage (S3), file systems, and Iceberg tables. The vulnerability arises from the S3 API gateway and the Iceberg REST catalog gateway constructing their routers with mux.NewRouter().SkipClean(true), which disables path cleaning. This allows a .. segment inside the URL to survive routing, potentially leadi [truncated]