CVE-2026-45695 | Kopia up to 0.22.x HTTP Server /api/v1/repo/exists exec.CommandContext sshArguments os command injection

SecurityVulns

A vulnerability described as critical has been identified in Kopia up to 0.22.x. This affects the function exec.CommandContext of the file /api/v1/repo/exists of the component HTTP Server. Executing a manipulation of the argument sshArguments can lead to os command injection.

This vulnerability is tracked as CVE-2026-45695. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More