CVE-2026-28296

EUVD-2026-8861
A flaw was found in the FTP GVfs backend. A remote attacker could exploit this input validation vulnerability by supplying specially crafted file paths containing carriage return and line feed (CRLF) sequences. These unsanitized sequences allow the attacker to terminate intended FTP commands and inject arbitrary FTP commands, potentially leading to arbitrary code execution or other severe impacts.
CRLF Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 28%
Debian logo
Debian Releases
Debian Product
Codename
gvfs
bookworm
1.50.3-1+deb12u1
fixed
bullseye
vulnerable
bullseye (security)
1.46.2-2+deb11u1
fixed
forky
1.60.0-2
fixed
sid
1.60.0-2
fixed
trixie
1.57.2-2+deb13u1
fixed
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
gvfs
suse enterprise desktop 15 SP7
1.52.2-150600.3.3.1
fixed
suse enterprise sap 15 SP4
1.48.2-150400.4.9.1
fixed
suse enterprise sap 15 SP5
1.48.2-150400.4.9.1
fixed
suse enterprise sap 15 SP7
1.52.2-150600.3.3.1
fixed
suse enterprise server 12 SP3
1.28.3-18.9.1
fixed
suse enterprise server 12 SP5
1.28.3-18.9.1
fixed
suse enterprise server 15 SP4
1.48.2-150400.4.9.1
fixed
suse enterprise server 15 SP5
1.48.2-150400.4.9.1
fixed
suse enterprise server 15 SP6
1.52.2-150600.3.3.1
fixed
suse enterprise server 15 SP7
1.52.2-150600.3.3.1
fixed
gvfs-backend-afc
suse enterprise desktop 15 SP7
1.52.2-150600.3.3.1
fixed
suse enterprise sap 15 SP4
1.48.2-150400.4.9.1
fixed
suse enterprise sap 15 SP5
1.48.2-150400.4.9.1
fixed
suse enterprise sap 15 SP7
1.52.2-150600.3.3.1
fixed
suse enterprise server 15 SP4
1.48.2-150400.4.9.1
fixed
suse enterprise server 15 SP5
1.48.2-150400.4.9.1
fixed
suse enterprise server 15 SP6
1.52.2-150600.3.3.1
fixed
suse enterprise server 15 SP7
1.52.2-150600.3.3.1
fixed
gvfs-backend-samba
suse enterprise desktop 15 SP7
1.52.2-150600.3.3.1
fixed
suse enterprise sap 15 SP4
1.48.2-150400.4.9.1
fixed
suse enterprise sap 15 SP5
1.48.2-150400.4.9.1
fixed
suse enterprise sap 15 SP7
1.52.2-150600.3.3.1
fixed
suse enterprise server 12 SP3
1.28.3-18.9.1
fixed
suse enterprise server 12 SP5
1.28.3-18.9.1
fixed
suse enterprise server 15 SP4
1.48.2-150400.4.9.1
fixed
suse enterprise server 15 SP5
1.48.2-150400.4.9.1
fixed
suse enterprise server 15 SP6
1.52.2-150600.3.3.1
fixed
suse enterprise server 15 SP7
1.52.2-150600.3.3.1
fixed
gvfs-backends
suse enterprise desktop 15 SP7
1.52.2-150600.3.3.1
fixed
suse enterprise sap 15 SP4
1.48.2-150400.4.9.1
fixed
suse enterprise sap 15 SP5
1.48.2-150400.4.9.1
fixed
suse enterprise sap 15 SP7
1.52.2-150600.3.3.1
fixed
suse enterprise server 12 SP3
1.28.3-18.9.1
fixed
suse enterprise server 12 SP5
1.28.3-18.9.1
fixed
suse enterprise server 15 SP4
1.48.2-150400.4.9.1
fixed
suse enterprise server 15 SP5
1.48.2-150400.4.9.1
fixed
suse enterprise server 15 SP6
1.52.2-150600.3.3.1
fixed
suse enterprise server 15 SP7
1.52.2-150600.3.3.1
fixed
gvfs-devel
suse enterprise desktop 15 SP7
1.52.2-150600.3.3.1
fixed
suse enterprise sap 15 SP4
1.48.2-150400.4.9.1
fixed
suse enterprise sap 15 SP5
1.48.2-150400.4.9.1
fixed
suse enterprise sap 15 SP7
1.52.2-150600.3.3.1
fixed
suse enterprise server 12 SP5
1.28.3-18.9.1
fixed
suse enterprise server 15 SP4
1.48.2-150400.4.9.1
fixed
suse enterprise server 15 SP5
1.48.2-150400.4.9.1
fixed
suse enterprise server 15 SP6
1.52.2-150600.3.3.1
fixed
suse enterprise server 15 SP7
1.52.2-150600.3.3.1
fixed
gvfs-fuse
suse enterprise desktop 15 SP7
1.52.2-150600.3.3.1
fixed
suse enterprise sap 15 SP4
1.48.2-150400.4.9.1
fixed
suse enterprise sap 15 SP5
1.48.2-150400.4.9.1
fixed
suse enterprise sap 15 SP7
1.52.2-150600.3.3.1
fixed
suse enterprise server 12 SP3
1.28.3-18.9.1
fixed
suse enterprise server 12 SP5
1.28.3-18.9.1
fixed
suse enterprise server 15 SP4
1.48.2-150400.4.9.1
fixed
suse enterprise server 15 SP5
1.48.2-150400.4.9.1
fixed
suse enterprise server 15 SP6
1.52.2-150600.3.3.1
fixed
suse enterprise server 15 SP7
1.52.2-150600.3.3.1
fixed
gvfs-lang
suse enterprise desktop 15 SP7
1.52.2-150600.3.3.1
fixed
suse enterprise sap 15 SP4
1.48.2-150400.4.9.1
fixed
suse enterprise sap 15 SP5
1.48.2-150400.4.9.1
fixed
suse enterprise sap 15 SP7
1.52.2-150600.3.3.1
fixed
suse enterprise server 12 SP3
1.28.3-18.9.1
fixed
suse enterprise server 12 SP5
1.28.3-18.9.1
fixed
suse enterprise server 15 SP4
1.48.2-150400.4.9.1
fixed
suse enterprise server 15 SP5
1.48.2-150400.4.9.1
fixed
suse enterprise server 15 SP6
1.52.2-150600.3.3.1
fixed
suse enterprise server 15 SP7
1.52.2-150600.3.3.1
fixed
Amazon Linux logo
Amazon Linux Releases
Amazon Package
Release
gvfs
Amazon Linux 2
0:1.36.2-3.amzn2.0.2
fixed
Amazon Linux 2023
0:1.56.1-1.amzn2023.0.2
fixed
gvfs-afc
Amazon Linux 2
0:1.36.2-3.amzn2.0.2
fixed
gvfs-afp
Amazon Linux 2
0:1.36.2-3.amzn2.0.2
fixed
gvfs-archive
Amazon Linux 2
0:1.36.2-3.amzn2.0.2
fixed
Amazon Linux 2023
0:1.56.1-1.amzn2023.0.2
fixed
gvfs-archive-debuginfo
Amazon Linux 2023
0:1.56.1-1.amzn2023.0.2
fixed
gvfs-client
Amazon Linux 2
0:1.36.2-3.amzn2.0.2
fixed
Amazon Linux 2023
0:1.56.1-1.amzn2023.0.2
fixed
gvfs-client-debuginfo
Amazon Linux 2023
0:1.56.1-1.amzn2023.0.2
fixed
gvfs-debuginfo
Amazon Linux 2
0:1.36.2-3.amzn2.0.2
fixed
Amazon Linux 2023
0:1.56.1-1.amzn2023.0.2
fixed
gvfs-debugsource
Amazon Linux 2023
0:1.56.1-1.amzn2023.0.2
fixed
gvfs-devel
Amazon Linux 2
0:1.36.2-3.amzn2.0.2
fixed
gvfs-fuse
Amazon Linux 2
0:1.36.2-3.amzn2.0.2
fixed
Amazon Linux 2023
0:1.56.1-1.amzn2023.0.2
fixed
gvfs-fuse-debuginfo
Amazon Linux 2023
0:1.56.1-1.amzn2023.0.2
fixed
gvfs-goa
Amazon Linux 2
0:1.36.2-3.amzn2.0.2
fixed
Amazon Linux 2023
0:1.56.1-1.amzn2023.0.2
fixed
gvfs-goa-debuginfo
Amazon Linux 2023
0:1.56.1-1.amzn2023.0.2
fixed
gvfs-gphoto2
Amazon Linux 2
0:1.36.2-3.amzn2.0.2
fixed
gvfs-mtp
Amazon Linux 2
0:1.36.2-3.amzn2.0.2
fixed
gvfs-nfs
Amazon Linux 2023
0:1.56.1-1.amzn2023.0.2
fixed
gvfs-nfs-debuginfo
Amazon Linux 2023
0:1.56.1-1.amzn2023.0.2
fixed
gvfs-smb
Amazon Linux 2
0:1.36.2-3.amzn2.0.2
fixed
Amazon Linux 2023
0:1.56.1-1.amzn2023.0.2
fixed
gvfs-smb-debuginfo
Amazon Linux 2023
0:1.56.1-1.amzn2023.0.2
fixed
gvfs-tests
Amazon Linux 2
0:1.36.2-3.amzn2.0.2
fixed