CVE-2026-54917 | SeaweedFS up to 4.29 /evil-bucket/key mux.NewRouter path traversal (GHSA-w62w-66v9-vvgv)

A vulnerability, which was classified as critical, was found in SeaweedFS up to 4.29. This issue affects the function mux.NewRouter of the file /evil-bucket/key. Executing a manipulation can lead to path traversal.

This vulnerability is handled as CVE-2026-54917. The attack can be executed remotely. There is not any exploit available.

You should upgrade the affected component.VulDB Recent EntriesRead More