QwikSec

Security Database

CVE

CWE

Training

CVE-2025-68705

Published: Jan 7, 2026

Modified: Jan 7, 2026

PUBLISHED

Description

RustFS is a distributed object storage system built in Rust. In versions 1.0.0-alpha.13 to 1.0.0-alpha.78, RustFS contains a path traversal vulnerability in the /rustfs/rpc/read_file_stream endpoint. This issue has been patched in version 1.0.0-alpha.79.

Vendor	Product	Versions
rustfs	rustfs	affected `>= 1.0.0-alpha.13, < 1.0.0-alpha.79`

Weaknesses (CWE)

References

https://github.com/rustfs/rustfs/security/advisories/GHSA-pq29-69jg-9mxc

x_refsource_CONFIRM

https://github.com/rustfs/rustfs/commit/ab752458ce431c6397175d167beee2ea00507d3e

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.