Path Traversal in Ronf Asyncssh

CVE-2026-45309

AsyncSSH is a Python package which provides an asynchronous client and server implementation of the SSHv2 protocol on top of the Python asyncio framework. Prior to 2.23.0, AsyncSSH expands the OpenSSH-compatible AuthorizedKeysFile %u token…

Vulnerability class: Path Traversal (Directory Traversal)

Affected products

Weakness classification (CWE)

References