CVE-2026-11745

UNKNOWN 0.0

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

A vulnerability has been identified in centraldogma-server-mirror-git versions prior to 0.84.0, where the Git mirror SSH client does not verify remote host keys for git+ssh:// connections, allowing an on-path attacker to perform man-in-the-middle attacks and compromise mirrored repositories.

Vendor	ly corporation
Product	central dogma
Published	Jun 22, 2026

Stay Ahead of the Next One

Get instant alerts for ly corporation central dogma

Be the first to know when new unknown vulnerabilities affecting ly corporation central dogma are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

LY Corporation / Central Dogma

All versions affected

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/line/centraldogma/security/advisories/GHSA-vjfw-cpmh-xwv3