Important severity8.8OSV Advisory· Published Jul 15, 2026
dulwich: Dulwich: Missing SSH host key verification allows potential impersonation
CVE-2026-38974
Description
dulwich: Dulwich: Missing SSH host key verification allows potential impersonation
Affected products
2dulwich-1.0.0, dulwich-0.25.2, dulwich-0.25.1, …+ 1 more
- (no CPE)range: dulwich-1.0.0, dulwich-0.25.2, dulwich-0.25.1, …
- (no CPE)
Patches
Vulnerability mechanics
News mentions
0No linked articles in our index yet.