{"resultsPerPage":69,"startIndex":0,"totalResults":69,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-01T08:58:24.945","vulnerabilities":[{"cve":{"id":"CVE-1999-0473","sourceIdentifier":"cve@mitre.org","published":"1999-04-07T04:00:00.000","lastModified":"2026-04-16T00:27:16.627","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The rsync command before rsync 2.3.1 may inadvertently change the permissions of the client's working directory to the permissions of the directory being transferred."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:N/I:P/A:N","baseScore":2.1,"accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":3.9,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:*:*:*:*:*:*:*:*","versionEndIncluding":"2.3.1","matchCriteriaId":"E2804E6B-9C98-4B0D-BC5C-3B92BF347B53"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/145","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/145","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2002-0048","sourceIdentifier":"cve@mitre.org","published":"2002-02-27T05:00:00.000","lastModified":"2026-04-16T00:27:16.627","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Multiple signedness errors (mixed signed and unsigned numbers) in the I/O functions of rsync 2.4.6, 2.3.2, and other versions allow remote attackers to cause a denial of service and execute arbitrary code in the rsync client or server."},{"lang":"es","value":"Errores de mezclado de números con y sin signo en las funciones I/O de rsync, versiones 2.4.6, 2.3.2 y otras versiones, permite que atacantes remotos provoquen una denegación de servicio y ejecuten código arbitrario en el cliente o servidor rsync."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:C/I:C/A:C","baseScore":10.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":true,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.3.1:*:*:*:*:*:*:*","matchCriteriaId":"138253E8-6342-4A88-89E6-B579782BC273"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.3.2:*:*:*:*:*:*:*","matchCriteriaId":"06A95770-7838-4D26-98BD-F3C0A264C431"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.3.2_1.2:*:alpha:*:*:*:*:*","matchCriteriaId":"C698EF8A-7EAE-4F23-87FD-57D143759BA5"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.3.2_1.2:*:arm:*:*:*:*:*","matchCriteriaId":"10E06CAF-D555-46E4-A39B-D1C230E34CE4"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.3.2_1.2:*:intel:*:*:*:*:*","matchCriteriaId":"CE361EF1-4FC5-4E0B-AC04-F7D46CBC46F0"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.3.2_1.2:*:m68k:*:*:*:*:*","matchCriteriaId":"542C7579-F7FE-4D66-9C39-4C89B502614F"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.3.2_1.2:*:ppc:*:*:*:*:*","matchCriteriaId":"A08984C1-C94B-44E7-BF5A-2C4FB74A448E"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.3.2_1.2:*:sparc:*:*:*:*:*","matchCriteriaId":"A289538D-27D6-430B-ABE4-A2D332491313"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.4.1:*:*:*:*:*:*:*","matchCriteriaId":"41681E68-E4D3-4466-8BAF-12F38D670C73"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.4.3:*:*:*:*:*:*:*","matchCriteriaId":"9C472D33-56FC-4939-A800-00C319D44D45"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.4.4:*:*:*:*:*:*:*","matchCriteriaId":"D57C7AF3-A648-44E3-9ABF-D546B34BDC02"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.4.6:*:*:*:*:*:*:*","matchCriteriaId":"FC163657-8FD5-4578-8452-49ABAA1121D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.5.0_1:*:*:*:*:*:*:*","matchCriteriaId":"734ABECE-06D5-43D7-96DD-9429BCAC3FB8"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.5.1:*:*:*:*:*:*:*","matchCriteriaId":"502E8AC0-7293-41A0-BA17-873DEE5133DB"}]}]}],"references":[{"url":"ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:10.rsync.asc","source":"cve@mitre.org"},{"url":"http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000458","source":"cve@mitre.org"},{"url":"http://lists.suse.com/archives/suse-security-announce/2002-Jan/0003.html","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=101223214906963&w=2","source":"cve@mitre.org"},{"url":"http://marc.info/?l=bugtraq&m=101223603321315&w=2","source":"cve@mitre.org"},{"url":"http://online.securityfocus.com/advisories/3839","source":"cve@mitre.org"},{"url":"http://www.caldera.com/support/security/advisories/CSSA-2002-003.0.txt","source":"cve@mitre.org"},{"url":"http://www.debian.org/security/2002/dsa-106","source":"cve@mitre.org","tags":["Patch"]},{"url":"http://www.iss.net/security_center/static/7993.php","source":"cve@mitre.org"},{"url":"http://www.kb.cert.org/vuls/id/800635","source":"cve@mitre.org","tags":["US Government Resource"]},{"url":"http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-009.php","source":"cve@mitre.org"},{"url":"http://www.linuxsecurity.com/advisories/other_advisory-1853.html","source":"cve@mitre.org"},{"url":"http://www.redhat.com/support/errata/RHSA-2002-018.html","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/3958","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:10.rsync.asc","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000458","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.suse.com/archives/suse-security-announce/2002-Jan/0003.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=101223214906963&w=2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://marc.info/?l=bugtraq&m=101223603321315&w=2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://online.securityfocus.com/advisories/3839","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.caldera.com/support/security/advisories/CSSA-2002-003.0.txt","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.debian.org/security/2002/dsa-106","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"http://www.iss.net/security_center/static/7993.php","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.kb.cert.org/vuls/id/800635","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["US Government Resource"]},{"url":"http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-009.php","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.linuxsecurity.com/advisories/other_advisory-1853.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.redhat.com/support/errata/RHSA-2002-018.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/3958","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2002-0080","sourceIdentifier":"cve@mitre.org","published":"2002-03-15T05:00:00.000","lastModified":"2026-04-16T00:27:16.627","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"rsync, when running in daemon mode, does not properly call setgroups before dropping privileges, which could provide supplemental group privileges to local users, who could then read certain files that would otherwise be disallowed."},{"lang":"es","value":"rsync no llama adecuadamente a 'setgroups' antes de establecer los permisos, lo cual podría proveer de ciertos privilegios de grupo a usuarios locales, los cuales podrían leer ciertos ficheros que de otro modo les estarían vetados."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:P/I:N/A:N","baseScore":2.1,"accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":3.9,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-269"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:*:*:*:*:*:*:*:*","versionEndExcluding":"2.5.3","matchCriteriaId":"2388AF97-7C59-4CF8-9B4F-EA3EE07EC68B"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:linux:6.2:*:*:*:*:*:*:*","matchCriteriaId":"0633B5A6-7A88-4A96-9462-4C09D124ED36"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:linux:7.0:*:*:*:*:*:*:*","matchCriteriaId":"29B186E5-7C2F-466E-AA4A-8F2B618F8A14"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:linux:7.1:*:*:*:*:*:*:*","matchCriteriaId":"1D46E093-1C68-43BB-B281-12117EC8DE0F"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:linux:7.2:*:*:*:*:*:*:*","matchCriteriaId":"E562907F-D915-4030-847A-3C6834A80D4E"}]}]}],"references":[{"url":"http://www.caldera.com/support/security/advisories/CSSA-2002-014.1.txt","source":"cve@mitre.org","tags":["Broken Link"]},{"url":"http://www.iss.net/security_center/static/8463.php","source":"cve@mitre.org","tags":["Broken Link"]},{"url":"http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-024.php3","source":"cve@mitre.org","tags":["Broken Link"]},{"url":"http://www.redhat.com/support/errata/RHSA-2002-026.html","source":"cve@mitre.org","tags":["Patch","Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/4285","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.caldera.com/support/security/advisories/CSSA-2002-014.1.txt","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://www.iss.net/security_center/static/8463.php","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-024.php3","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://www.redhat.com/support/errata/RHSA-2002-026.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/4285","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]}]}},{"cve":{"id":"CVE-2003-0356","sourceIdentifier":"cve@mitre.org","published":"2003-06-09T04:00:00.000","lastModified":"2026-04-16T00:27:16.627","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Multiple off-by-one vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) AIM, (2) GIOP Gryphon, (3) OSPF, (4) PPTP, (5) Quake, (6) Quake2, (7) Quake3, (8) Rsync, (9) SMB, (10) SMPP, and (11) TSP dissectors, which do not properly use the tvb_get_nstringz and tvb_get_nstringz0 functions."},{"lang":"es","value":"Múltiples vulnerabilidades off-by-one en Ethereal 0.9.11  y anteriores permiten que atacantes remotos provoquen una denegación de servicio y posiblemente ejecuten código arbitrario mediante disectores (1) AIM, (2) GIOP Gryphon, (3) OSPF, (4) PPTP, (5) Quake, (6) Quake2, (7) Quake3, (8) Rsync, (9) SMB, (10) SMPP, y (11) TSP, ya que no están usando apropiadamente las funciones tvb_get_nstringz y tvb_get_nstringz0."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:C/I:C/A:C","baseScore":10.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":true,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-193"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ethereal:ethereal:*:*:*:*:*:*:*:*","versionEndExcluding":"0.9.12","matchCriteriaId":"8147E775-9C11-43BB-8616-03E92D765F41"}]}]}],"references":[{"url":"http://www.debian.org/security/2003/dsa-313","source":"cve@mitre.org","tags":["Broken Link","Patch","Vendor Advisory"]},{"url":"http://www.ethereal.com/appnotes/enpa-sa-00009.html","source":"cve@mitre.org","tags":["Broken Link","Patch","Vendor Advisory"]},{"url":"http://www.kb.cert.org/vuls/id/641013","source":"cve@mitre.org","tags":["Third Party Advisory","US Government Resource"]},{"url":"http://www.mandriva.com/security/advisories?name=MDKSA-2003:067","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2003-077.html","source":"cve@mitre.org","tags":["Broken Link"]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A69","source":"cve@mitre.org","tags":["Broken Link"]},{"url":"http://www.debian.org/security/2003/dsa-313","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link","Patch","Vendor Advisory"]},{"url":"http://www.ethereal.com/appnotes/enpa-sa-00009.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link","Patch","Vendor Advisory"]},{"url":"http://www.kb.cert.org/vuls/id/641013","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]},{"url":"http://www.mandriva.com/security/advisories?name=MDKSA-2003:067","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2003-077.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A69","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]}]}},{"cve":{"id":"CVE-2003-0962","sourceIdentifier":"cve@mitre.org","published":"2003-12-15T05:00:00.000","lastModified":"2026-04-16T00:27:16.627","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Heap-based buffer overflow in rsync before 2.5.7, when running in server mode, allows remote attackers to execute arbitrary code and possibly escape the chroot jail."},{"lang":"es","value":"Desbordamiento de búfer en el montón en rsync anteriores a 2.5.7, cuando se ejecuta en modo servidor, permite a atacantes remotos ejecutar código arbitrario y posiblemente escapar del confinamiento chroot."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":true,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.3.1:*:*:*:*:*:*:*","matchCriteriaId":"138253E8-6342-4A88-89E6-B579782BC273"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.3.2:*:*:*:*:*:*:*","matchCriteriaId":"06A95770-7838-4D26-98BD-F3C0A264C431"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.4.0:*:*:*:*:*:*:*","matchCriteriaId":"26EB2DBC-F71C-4D86-9436-FA06B7244F1E"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.4.1:*:*:*:*:*:*:*","matchCriteriaId":"41681E68-E4D3-4466-8BAF-12F38D670C73"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.4.3:*:*:*:*:*:*:*","matchCriteriaId":"9C472D33-56FC-4939-A800-00C319D44D45"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.4.4:*:*:*:*:*:*:*","matchCriteriaId":"D57C7AF3-A648-44E3-9ABF-D546B34BDC02"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.4.5:*:*:*:*:*:*:*","matchCriteriaId":"38450ED2-6642-4ADB-ACBC-702588904B50"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.4.6:*:*:*:*:*:*:*","matchCriteriaId":"FC163657-8FD5-4578-8452-49ABAA1121D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.4.8:*:*:*:*:*:*:*","matchCriteriaId":"DAFB0E34-5886-454E-9680-640F8FE6A4B6"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.5.0:*:*:*:*:*:*:*","matchCriteriaId":"FA756243-887B-42FD-9A68-2D54CE44AA0A"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.5.1:*:*:*:*:*:*:*","matchCriteriaId":"502E8AC0-7293-41A0-BA17-873DEE5133DB"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.5.2:*:*:*:*:*:*:*","matchCriteriaId":"55E84BFA-DAF8-4842-8542-E244FE16CBD8"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.5.3:*:*:*:*:*:*:*","matchCriteriaId":"5DC02AD4-07B4-4A35-BB74-7228A1CDABE1"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.5.4:*:*:*:*:*:*:*","matchCriteriaId":"33B1ECCC-AAF1-4A3A-BDFA-7955E1AA3683"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.5.5:*:*:*:*:*:*:*","matchCriteriaId":"FC4726E9-246B-4C6F-8253-0F09886749A0"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.5.6:*:*:*:*:*:*:*","matchCriteriaId":"59CAA1CD-09D5-40CC-9A27-738B4028BF05"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:rsync:2.4.6-2:*:i386:*:*:*:*:*","matchCriteriaId":"C3AC2944-7891-474C-8CEE-FC79129AC6F7"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:rsync:2.4.6-5:*:i386:*:*:*:*:*","matchCriteriaId":"88D09EE3-7737-49EE-B8F6-5775228DA1C1"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:rsync:2.4.6-5:*:ia64:*:*:*:*:*","matchCriteriaId":"7F7E7DAE-7D7F-4D3F-A3CE-DF2E3650F145"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:rsync:2.5.4-2:*:i386:*:*:*:*:*","matchCriteriaId":"151183D0-4807-470D-808B-115AD366BEAB"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:rsync:2.5.5-1:*:i386:*:*:*:*:*","matchCriteriaId":"E7DB4650-6A89-480E-BAFA-C2E3F4521601"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:rsync:2.5.5-4:*:i386:*:*:*:*:*","matchCriteriaId":"0730AD53-5419-4144-AE01-143142AD6404"},{"vulnerable":true,"criteria":"cpe:2.3:o:engardelinux:secure_community:1.0.1:*:*:*:*:*:*:*","matchCriteriaId":"444E0C0D-5121-4B89-BEF2-7D070AD2C8C8"},{"vulnerable":true,"criteria":"cpe:2.3:o:engardelinux:secure_community:2.0:*:*:*:*:*:*:*","matchCriteriaId":"835156D0-D0D8-4A82-9342-95E7239E3477"},{"vulnerable":true,"criteria":"cpe:2.3:o:engardelinux:secure_linux:1.1:*:professional:*:*:*:*:*","matchCriteriaId":"E61A9563-ECBE-41DB-A973-E0DEE41BE28F"},{"vulnerable":true,"criteria":"cpe:2.3:o:engardelinux:secure_linux:1.2:*:professional:*:*:*:*:*","matchCriteriaId":"E164271C-4A66-4DE2-890A-6A21D45F77D9"},{"vulnerable":true,"criteria":"cpe:2.3:o:engardelinux:secure_linux:1.5:*:professional:*:*:*:*:*","matchCriteriaId":"4E62C413-935F-459C-8F11-73F5B483E759"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:slackware:slackware_linux:8.1:*:*:*:*:*:*:*","matchCriteriaId":"57F41B40-75E6-45C8-A5FB-8464C0B2D064"},{"vulnerable":true,"criteria":"cpe:2.3:o:slackware:slackware_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"300A6A65-05FD-401C-80F6-B5F5B1F056E0"},{"vulnerable":true,"criteria":"cpe:2.3:o:slackware:slackware_linux:9.1:*:*:*:*:*:*:*","matchCriteriaId":"AA3D53C9-3806-45E6-8AE9-7D41280EF64C"},{"vulnerable":true,"criteria":"cpe:2.3:o:slackware:slackware_linux:current:*:*:*:*:*:*:*","matchCriteriaId":"B1CB2DD9-E77F-46EE-A145-F87AD10EA8E4"}]}]}],"references":[{"url":"ftp://patches.sgi.com/support/free/security/advisories/20031202-01-U","source":"cve@mitre.org"},{"url":"http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000794","source":"cve@mitre.org"},{"url":"http://marc.info/?l=bugtraq&m=107055681311602&w=2","source":"cve@mitre.org"},{"url":"http://marc.info/?l=bugtraq&m=107055684711629&w=2","source":"cve@mitre.org"},{"url":"http://marc.info/?l=bugtraq&m=107055702911867&w=2","source":"cve@mitre.org"},{"url":"http://marc.info/?l=bugtraq&m=107056923528423&w=2","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/10353","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/10354","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/10355","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/10356","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/10357","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/10358","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/10359","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/10360","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/10361","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/10362","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/10363","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/10364","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/10378","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/10474","source":"cve@mitre.org"},{"url":"http://www.kb.cert.org/vuls/id/325603","source":"cve@mitre.org","tags":["US Government Resource"]},{"url":"http://www.mandriva.com/security/advisories?name=MDKSA-2003:111","source":"cve@mitre.org"},{"url":"http://www.osvdb.org/2898","source":"cve@mitre.org"},{"url":"http://www.redhat.com/support/errata/RHSA-2003-398.html","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/9153","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/13899","source":"cve@mitre.org"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9415","source":"cve@mitre.org"},{"url":"ftp://patches.sgi.com/support/free/security/advisories/20031202-01-U","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000794","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://marc.info/?l=bugtraq&m=107055681311602&w=2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://marc.info/?l=bugtraq&m=107055684711629&w=2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://marc.info/?l=bugtraq&m=107055702911867&w=2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://marc.info/?l=bugtraq&m=107056923528423&w=2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/10353","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/10354","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/10355","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/10356","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/10357","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/10358","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/10359","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/10360","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/10361","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/10362","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/10363","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/10364","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/10378","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/10474","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.kb.cert.org/vuls/id/325603","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["US Government Resource"]},{"url":"http://www.mandriva.com/security/advisories?name=MDKSA-2003:111","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.osvdb.org/2898","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.redhat.com/support/errata/RHSA-2003-398.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/9153","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/13899","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9415","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2004-2093","sourceIdentifier":"cve@mitre.org","published":"2004-02-09T05:00:00.000","lastModified":"2026-04-16T00:27:16.627","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Buffer overflow in the open_socket_out function in socket.c for rsync 2.5.7 and earlier allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a long RSYNC_PROXY environment variable.  NOTE: since rsync is not setuid, this issue does not provide any additional privileges beyond those that are already available to the user.  Therefore this issue may be REJECTED in the future."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:P/I:P/A:P","baseScore":4.6,"accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":3.9,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":true,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:a:gnu:rsync:*:*:*:*:*:*:*:*","versionEndIncluding":"2.5.7","matchCriteriaId":"1FA7DB71-7D26-452C-97D3-62B4AB00EF01"}]}]}],"references":[{"url":"http://archives.neohapsis.com/archives/vuln-dev/2004-q1/0091.html","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/15108","source":"cve@mitre.org"},{"url":"http://archives.neohapsis.com/archives/vuln-dev/2004-q1/0091.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/15108","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2004-0426","sourceIdentifier":"cve@mitre.org","published":"2004-07-07T04:00:00.000","lastModified":"2026-04-16T00:27:16.627","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"rsync before 2.6.1 does not properly sanitize paths when running a read/write daemon without using chroot, which allows remote attackers to write files outside of the module's path."},{"lang":"es","value":"rsync anteriores a 2.6.1 no limpia adecuadamente rutas cuando ejecuta un demonio de lectura y escritura sin usar chroot, lo que permite a atacantes remotos escribir ficheros fuera de la ruta del módulo."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:P/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:*:*:*:*:*:*:*:*","versionEndIncluding":"2.6","matchCriteriaId":"28E82085-BA4C-4670-A837-8568FE1A1D58"}]}]}],"references":[{"url":"http://marc.info/?l=bugtraq&m=108515912212018&w=2","source":"cve@mitre.org"},{"url":"http://rsync.samba.org/","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://secunia.com/advisories/11514","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/11515","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/11523","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/11537","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/11583","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/11669","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/11688","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/11993","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/12054","source":"cve@mitre.org"},{"url":"http://www.ciac.org/ciac/bulletins/o-134.shtml","source":"cve@mitre.org"},{"url":"http://www.ciac.org/ciac/bulletins/o-212.shtml","source":"cve@mitre.org"},{"url":"http://www.debian.org/security/2004/dsa-499","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"http://www.gentoo.org/security/en/glsa/glsa-200407-10.xml","source":"cve@mitre.org"},{"url":"http://www.mandriva.com/security/advisories?name=MDKSA-2004:042","source":"cve@mitre.org"},{"url":"http://www.redhat.com/support/errata/RHSA-2004-192.html","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/10247","source":"cve@mitre.org"},{"url":"http://www.slackware.org/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.403462","source":"cve@mitre.org"},{"url":"http://www.trustix.net/errata/misc/2004/TSL-2004-0024-rsync.asc.txt","source":"cve@mitre.org"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/16014","source":"cve@mitre.org"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9495","source":"cve@mitre.org"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A967","source":"cve@mitre.org"},{"url":"http://marc.info/?l=bugtraq&m=108515912212018&w=2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://rsync.samba.org/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://secunia.com/advisories/11514","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/11515","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/11523","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/11537","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/11583","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/11669","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/11688","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/11993","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/12054","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.ciac.org/ciac/bulletins/o-134.shtml","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.ciac.org/ciac/bulletins/o-212.shtml","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.debian.org/security/2004/dsa-499","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://www.gentoo.org/security/en/glsa/glsa-200407-10.xml","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.mandriva.com/security/advisories?name=MDKSA-2004:042","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.redhat.com/support/errata/RHSA-2004-192.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/10247","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.slackware.org/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.403462","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.trustix.net/errata/misc/2004/TSL-2004-0024-rsync.asc.txt","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/16014","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9495","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A967","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2004-0792","sourceIdentifier":"cve@mitre.org","published":"2004-10-20T04:00:00.000","lastModified":"2026-04-16T00:27:16.627","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Directory traversal vulnerability in the sanitize_path function in util.c for rsync 2.6.2 and earlier, when chroot is disabled, allows attackers to read or write certain files."},{"lang":"es","value":"Vulnerabilidad de atravesamiento de directorios en la función sanitize_path en util.c de rsync 2.6.2 y anteriores, cuando chroot está desactivado, permite a atacantes leer o escribir ciertos ficheros."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:N","baseScore":6.4,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":4.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.3.1:*:*:*:*:*:*:*","matchCriteriaId":"138253E8-6342-4A88-89E6-B579782BC273"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.3.2:*:*:*:*:*:*:*","matchCriteriaId":"06A95770-7838-4D26-98BD-F3C0A264C431"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.3.2_1.2:*:alpha:*:*:*:*:*","matchCriteriaId":"C698EF8A-7EAE-4F23-87FD-57D143759BA5"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.3.2_1.2:*:arm:*:*:*:*:*","matchCriteriaId":"10E06CAF-D555-46E4-A39B-D1C230E34CE4"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.3.2_1.2:*:intel:*:*:*:*:*","matchCriteriaId":"CE361EF1-4FC5-4E0B-AC04-F7D46CBC46F0"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.3.2_1.2:*:m68k:*:*:*:*:*","matchCriteriaId":"542C7579-F7FE-4D66-9C39-4C89B502614F"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.3.2_1.2:*:ppc:*:*:*:*:*","matchCriteriaId":"A08984C1-C94B-44E7-BF5A-2C4FB74A448E"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.3.2_1.2:*:sparc:*:*:*:*:*","matchCriteriaId":"A289538D-27D6-430B-ABE4-A2D332491313"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.3.2_1.3:*:*:*:*:*:*:*","matchCriteriaId":"EB5183D1-CBB7-4E91-94A5-9761666A16AF"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.4.0:*:*:*:*:*:*:*","matchCriteriaId":"26EB2DBC-F71C-4D86-9436-FA06B7244F1E"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.4.1:*:*:*:*:*:*:*","matchCriteriaId":"41681E68-E4D3-4466-8BAF-12F38D670C73"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.4.3:*:*:*:*:*:*:*","matchCriteriaId":"9C472D33-56FC-4939-A800-00C319D44D45"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.4.4:*:*:*:*:*:*:*","matchCriteriaId":"D57C7AF3-A648-44E3-9ABF-D546B34BDC02"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.4.5:*:*:*:*:*:*:*","matchCriteriaId":"38450ED2-6642-4ADB-ACBC-702588904B50"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.4.6:*:*:*:*:*:*:*","matchCriteriaId":"FC163657-8FD5-4578-8452-49ABAA1121D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.4.8:*:*:*:*:*:*:*","matchCriteriaId":"DAFB0E34-5886-454E-9680-640F8FE6A4B6"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.5.0:*:*:*:*:*:*:*","matchCriteriaId":"FA756243-887B-42FD-9A68-2D54CE44AA0A"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.5.1:*:*:*:*:*:*:*","matchCriteriaId":"502E8AC0-7293-41A0-BA17-873DEE5133DB"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.5.2:*:*:*:*:*:*:*","matchCriteriaId":"55E84BFA-DAF8-4842-8542-E244FE16CBD8"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.5.3:*:*:*:*:*:*:*","matchCriteriaId":"5DC02AD4-07B4-4A35-BB74-7228A1CDABE1"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.5.4:*:*:*:*:*:*:*","matchCriteriaId":"33B1ECCC-AAF1-4A3A-BDFA-7955E1AA3683"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.5.5:*:*:*:*:*:*:*","matchCriteriaId":"FC4726E9-246B-4C6F-8253-0F09886749A0"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.5.6:*:*:*:*:*:*:*","matchCriteriaId":"59CAA1CD-09D5-40CC-9A27-738B4028BF05"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.5.7:*:*:*:*:*:*:*","matchCriteriaId":"A9391534-2F3A-4926-89DD-561FCCFA1743"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.6:*:*:*:*:*:*:*","matchCriteriaId":"9CE53D10-4467-4EAE-845F-F527357C0A71"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.6.1:*:*:*:*:*:*:*","matchCriteriaId":"4D107BB3-7DC7-4138-BE5F-A8B239427DD7"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.6.2:*:*:*:*:*:*:*","matchCriteriaId":"8F902BF6-CC1F-4544-A2FF-839A71C23EB0"}]}]}],"references":[{"url":"http://marc.info/?l=bugtraq&m=109268147522290&w=2","source":"cve@mitre.org"},{"url":"http://marc.info/?l=bugtraq&m=109277141223839&w=2","source":"cve@mitre.org"},{"url":"http://samba.org/rsync/#security_aug04","source":"cve@mitre.org"},{"url":"http://www.debian.org/security/2004/dsa-538","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"http://www.gentoo.org/security/en/glsa/glsa-200408-17.xml","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"http://www.mandriva.com/security/advisories?name=MDKSA-2004:083","source":"cve@mitre.org"},{"url":"http://www.novell.com/linux/security/advisories/2004_26_rsync.html","source":"cve@mitre.org"},{"url":"http://www.trustix.net/errata/2004/0042/","source":"cve@mitre.org"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10561","source":"cve@mitre.org"},{"url":"http://marc.info/?l=bugtraq&m=109268147522290&w=2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://marc.info/?l=bugtraq&m=109277141223839&w=2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://samba.org/rsync/#security_aug04","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.debian.org/security/2004/dsa-538","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://www.gentoo.org/security/en/glsa/glsa-200408-17.xml","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://www.mandriva.com/security/advisories?name=MDKSA-2004:083","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.novell.com/linux/security/advisories/2004_26_rsync.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.trustix.net/errata/2004/0042/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10561","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2004-1161","sourceIdentifier":"cve@mitre.org","published":"2005-01-10T05:00:00.000","lastModified":"2026-04-16T00:27:16.627","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"rssh 2.2.2 and earlier does not properly restrict programs that can be run, which could allow remote authenticated users to bypass intended access restrictions and execute arbitrary programs via (1) rdist -P, (2) rsync, or (3) scp -S."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":true,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:rssh:rssh:2.0:*:*:*:*:*:*:*","matchCriteriaId":"F3708773-21D3-4A11-A259-B9E8E81F916E"},{"vulnerable":true,"criteria":"cpe:2.3:a:rssh:rssh:2.1:*:*:*:*:*:*:*","matchCriteriaId":"5F835C18-5D15-43FD-B009-E7332E51A8AC"},{"vulnerable":true,"criteria":"cpe:2.3:a:rssh:rssh:2.2:*:*:*:*:*:*:*","matchCriteriaId":"A58936DD-0289-4B93-B351-CB1A3F4D54E8"},{"vulnerable":true,"criteria":"cpe:2.3:a:rssh:rssh:2.2.1:*:*:*:*:*:*:*","matchCriteriaId":"B0624666-0D2F-40FB-A9B2-5C868D6F3515"},{"vulnerable":true,"criteria":"cpe:2.3:a:rssh:rssh:2.2.2:*:*:*:*:*:*:*","matchCriteriaId":"0AB6E21A-9555-4655-B23C-998FFCFE83F7"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:gentoo:linux:*:*:*:*:*:*:*:*","matchCriteriaId":"647BA336-5538-4972-9271-383A0EC9378E"}]}]}],"references":[{"url":"http://marc.info/?l=bugtraq&m=110202047507273&w=2","source":"cve@mitre.org"},{"url":"http://marc.info/?l=bugtraq&m=110581113814623&w=2","source":"cve@mitre.org"},{"url":"http://www.gentoo.org/security/en/glsa/glsa-200412-01.xml","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/11792","source":"cve@mitre.org","tags":["Exploit","Vendor Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=110202047507273&w=2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://marc.info/?l=bugtraq&m=110581113814623&w=2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.gentoo.org/security/en/glsa/glsa-200412-01.xml","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/11792","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2005-4533","sourceIdentifier":"cve@mitre.org","published":"2005-12-28T01:03:00.000","lastModified":"2026-04-16T00:27:16.627","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Argument injection vulnerability in scponlyc in scponly 4.1 and earlier, when both scp and rsync compatibility are enabled, allows local users to execute arbitrary applications via \"getopt\" style argument specifications, which are not filtered."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":true,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:scponly:scponly:2.0:*:*:*:*:*:*:*","matchCriteriaId":"A74980DC-9A5B-4959-8193-1D7BE85CAEA8"},{"vulnerable":true,"criteria":"cpe:2.3:a:scponly:scponly:2.1:*:*:*:*:*:*:*","matchCriteriaId":"0863C35F-6061-426B-B656-E7B4A02D3E95"},{"vulnerable":true,"criteria":"cpe:2.3:a:scponly:scponly:3.0:*:*:*:*:*:*:*","matchCriteriaId":"32B689CE-F02B-4315-9E74-BC360EAFB937"},{"vulnerable":true,"criteria":"cpe:2.3:a:scponly:scponly:3.5:*:*:*:*:*:*:*","matchCriteriaId":"0C3262EA-F693-439B-922D-3F0DA09D0753"},{"vulnerable":true,"criteria":"cpe:2.3:a:scponly:scponly:3.8:*:*:*:*:*:*:*","matchCriteriaId":"B37D1F24-B45D-4217-972E-61BED886275A"},{"vulnerable":true,"criteria":"cpe:2.3:a:scponly:scponly:3.9:*:*:*:*:*:*:*","matchCriteriaId":"71D3E1C8-ADCB-4A5F-8078-66942E36DF6D"},{"vulnerable":true,"criteria":"cpe:2.3:a:scponly:scponly:3.11:*:*:*:*:*:*:*","matchCriteriaId":"190FB980-F17F-43A9-8DA4-B2A99E29DF3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:scponly:scponly:4.1:*:*:*:*:*:*:*","matchCriteriaId":"298502A9-5E53-4CBE-BCCA-6D86EFDD3BF3"}]}]}],"references":[{"url":"http://secunia.com/advisories/18223","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"http://secunia.com/advisories/18236","source":"cve@mitre.org"},{"url":"http://sublimation.org/scponly/#relnotes","source":"cve@mitre.org"},{"url":"http://www.gentoo.org/security/en/glsa/glsa-200512-17.xml","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/16051","source":"cve@mitre.org"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/23875","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/18223","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://secunia.com/advisories/18236","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://sublimation.org/scponly/#relnotes","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.gentoo.org/security/en/glsa/glsa-200512-17.xml","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/16051","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/23875","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2005-3712","sourceIdentifier":"cve@mitre.org","published":"2005-12-31T05:00:00.000","lastModified":"2026-04-16T00:27:16.627","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Heap-based buffer overflow in rsync in Mac OS X 10.4 through 10.4.5 allows remote authenticated users to execute arbitrary code via long extended attributes."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:P/A:P","baseScore":6.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-119"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:10.4:*:*:*:*:*:*:*","matchCriteriaId":"0760FDDB-38D3-4263-9B4D-1AF5E613A4F9"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:10.4.1:*:*:*:*:*:*:*","matchCriteriaId":"AFD4DE58-46C7-4E69-BF36-C5FD768B8248"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:10.4.2:*:*:*:*:*:*:*","matchCriteriaId":"CF824694-52DE-44E3-ACAD-60B2A84CD3CE"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:10.4.3:*:*:*:*:*:*:*","matchCriteriaId":"B73A0891-A37A-4E0D-AA73-B18BFD6B1447"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:10.4.4:*:*:*:*:*:*:*","matchCriteriaId":"26AC38AB-D689-4B2B-9DAE-F03F4DFD15BE"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:10.4.5:*:*:*:*:*:*:*","matchCriteriaId":"0C580935-0091-4163-B747-750FB7686973"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x_server:10.4:*:*:*:*:*:*:*","matchCriteriaId":"D24D5FA5-95DD-4ECC-B99A-8CB33156A6D0"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x_server:10.4.1:*:*:*:*:*:*:*","matchCriteriaId":"29644501-54BD-45E9-A6C1-618892CD354F"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x_server:10.4.2:*:*:*:*:*:*:*","matchCriteriaId":"8A132487-E89F-4D0D-8366-14AFC904811F"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x_server:10.4.3:*:*:*:*:*:*:*","matchCriteriaId":"FD231103-D7C7-4697-BE90-D67558D6115C"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x_server:10.4.4:*:*:*:*:*:*:*","matchCriteriaId":"BCADAAA0-C885-466C-A122-A94E73EAF817"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x_server:10.4.5:*:*:*:*:*:*:*","matchCriteriaId":"448DB1C7-7B0C-4076-9B9F-1CDCD5EB6930"}]}]}],"references":[{"url":"http://docs.info.apple.com/article.html?artnum=303382","source":"cve@mitre.org"},{"url":"http://lists.apple.com/archives/security-announce/2006/Mar/msg00000.html","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"http://secunia.com/advisories/19064","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"http://www.osvdb.org/23648","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/16907","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA06-062A.html","source":"cve@mitre.org","tags":["US Government Resource"]},{"url":"http://www.vupen.com/english/advisories/2006/0791","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/25029","source":"cve@mitre.org"},{"url":"http://docs.info.apple.com/article.html?artnum=303382","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.apple.com/archives/security-announce/2006/Mar/msg00000.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://secunia.com/advisories/19064","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://www.osvdb.org/23648","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/16907","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA06-062A.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["US Government Resource"]},{"url":"http://www.vupen.com/english/advisories/2006/0791","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/25029","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2006-1320","sourceIdentifier":"cve@mitre.org","published":"2006-03-20T11:02:00.000","lastModified":"2026-04-16T00:27:16.627","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"util.c in rssh 2.3.0 in Debian GNU/Linux does not use braces to make a block, which causes a check for CVS to always succeed and allows rsync and rdist to bypass intended access restrictions in rssh.conf."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":true,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:rssh:rssh:2.3.0:*:*:*:*:*:*:*","matchCriteriaId":"01E9E67F-82D8-4D50-85E3-2B27B23D7896"}]}]}],"references":[{"url":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=346322","source":"cve@mitre.org","tags":["Patch"]},{"url":"http://secunia.com/advisories/21087","source":"cve@mitre.org"},{"url":"http://www.debian.org/security/2006/dsa-1109","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/18999","source":"cve@mitre.org"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/25424","source":"cve@mitre.org"},{"url":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=346322","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"http://secunia.com/advisories/21087","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.debian.org/security/2006/dsa-1109","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/18999","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/25424","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2006-2083","sourceIdentifier":"secalert@redhat.com","published":"2006-04-28T21:02:00.000","lastModified":"2026-04-16T00:27:16.627","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Integer overflow in the receive_xattr function in the extended attributes patch (xattr.c) for rsync before 2.6.8 might allow attackers to execute arbitrary code via crafted extended attributes that trigger a buffer overflow."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":true,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.6.0:*:*:*:*:*:*:*","matchCriteriaId":"DC8829E5-3C26-407C-A264-4E2DF3B8C075"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.6.1:*:*:*:*:*:*:*","matchCriteriaId":"4D107BB3-7DC7-4138-BE5F-A8B239427DD7"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.6.2:*:*:*:*:*:*:*","matchCriteriaId":"8F902BF6-CC1F-4544-A2FF-839A71C23EB0"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.6.3:*:*:*:*:*:*:*","matchCriteriaId":"F2C715D1-D7A7-47FC-9473-7F2D23AAC115"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.6.4:*:*:*:*:*:*:*","matchCriteriaId":"CF9CDA0C-DCF8-4790-B345-805570731B38"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.6.5:*:*:*:*:*:*:*","matchCriteriaId":"FCA76DC6-84A7-488E-9F91-817B86DA7CC4"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.6.6:*:*:*:*:*:*:*","matchCriteriaId":"43E69E14-843A-4764-B550-F89C8EEE544F"},{"vulnerable":true,"criteria":"cpe:2.3:a:andrew_tridgell:rsync:2.6.7:*:*:*:*:*:*:*","matchCriteriaId":"C7ED5623-C618-40D7-930C-4659859BAA93"}]}]}],"references":[{"url":"http://samba.anu.edu.au/ftp/rsync/rsync-2.6.8-NEWS","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/19920","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/19964","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/20011","source":"secalert@redhat.com"},{"url":"http://www.gentoo.org/security/en/glsa/glsa-200605-05.xml","source":"secalert@redhat.com"},{"url":"http://www.securityfocus.com/bid/17788","source":"secalert@redhat.com"},{"url":"http://www.trustix.org/errata/2006/0024","source":"secalert@redhat.com"},{"url":"http://www.vupen.com/english/advisories/2006/1606","source":"secalert@redhat.com"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/26208","source":"secalert@redhat.com"},{"url":"http://samba.anu.edu.au/ftp/rsync/rsync-2.6.8-NEWS","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/19920","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/19964","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/20011","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.gentoo.org/security/en/glsa/glsa-200605-05.xml","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/17788","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.trustix.org/errata/2006/0024","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2006/1606","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/26208","source":"af854a3a-2127-422b-91ae-364da2661108"}],"vendorComments":[{"organization":"Red Hat","comment":"Not vulnerable.  This issue does not affect the versions of rsync distributed with Red Hat Enterprise Linux 2.1, 3, or 4.","lastModified":"2006-08-30T00:00:00"}]}},{"cve":{"id":"CVE-2007-0670","sourceIdentifier":"cve@mitre.org","published":"2007-02-03T00:28:00.000","lastModified":"2026-04-23T00:35:47.467","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Buffer overflow in bos.rte.libc in IBM AIX 5.2 and 5.3 allows local users to execute arbitrary code via the \"r-commands\", possibly including (1) rdist, (2) rsh, (3) rcp, (4) rsync, and (5) rlogin."},{"lang":"es","value":"Un desbordamiento de búfer en la biblioteca bos.rte.libc en IBM AIX versiones 5.2 y 5.3, permite a usuarios locales ejecutar código arbitrario por medio de los \"r-commands\", incluyendo posiblemente (1) rdist, (2) rsh, (3) rcp, (4) rsync, y (5) rlogin."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:P/I:P/A:P","baseScore":4.6,"accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":3.9,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":true,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-119"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:ibm:aix:5.2:*:*:*:*:*:*:*","matchCriteriaId":"17EECCCB-D7D1-439A-9985-8FAE8B44487B"},{"vulnerable":true,"criteria":"cpe:2.3:o:ibm:aix:5.3:*:*:*:*:*:*:*","matchCriteriaId":"EA8DDF4A-1C5D-4CB1-95B3-69EAE6572507"}]}]}],"references":[{"url":"ftp://aix.software.ibm.com/aix/efixes/security/README","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/23995","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://securitytracker.com/id?1017583","source":"cve@mitre.org"},{"url":"http://securitytracker.com/id?1017607","source":"cve@mitre.org"},{"url":"http://www-1.ibm.com/support/docview.wss?uid=isg1IY94301","source":"cve@mitre.org"},{"url":"http://www-1.ibm.com/support/docview.wss?uid=isg1IY94368","source":"cve@mitre.org"},{"url":"http://www.osvdb.org/31696","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/22370","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/22456","source":"cve@mitre.org"},{"url":"http://www.vupen.com/english/advisories/2007/0471","source":"cve@mitre.org"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/32184","source":"cve@mitre.org"},{"url":"ftp://aix.software.ibm.com/aix/efixes/security/README","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/23995","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://securitytracker.com/id?1017583","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://securitytracker.com/id?1017607","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www-1.ibm.com/support/docview.wss?uid=isg1IY94301","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www-1.ibm.com/support/docview.wss?uid=isg1IY94368","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.osvdb.org/31696","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/22370","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/22456","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2007/0471","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/32184","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2007-4091","sourceIdentifier":"cve@mitre.org","published":"2007-08-16T00:17:00.000","lastModified":"2026-04-23T00:35:47.467","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Multiple off-by-one errors in the sender.c in rsync 2.6.9 might allow remote attackers to execute arbitrary code via directory names that are not properly handled when calling the f_name function."},{"lang":"es","value":"Múltiples errores de superación de límite (off-by-one) en sender.c de rsync 2.6.9 podría permitir a atacantes remotos ejecutar código de su elección mediante nombres de directorio que no son manejados adecuadamente al llamar a la función f_name."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:P/A:P","baseScore":6.8,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":true,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.6.9:*:*:*:*:*:*:*","matchCriteriaId":"32A205AF-8E75-4AD8-BE0F-EC6A9296D127"}]}]}],"references":[{"url":"http://article.gmane.org/gmane.linux.debian.devel.bugs.general/291908","source":"cve@mitre.org"},{"url":"http://c-skills.blogspot.com/2007/08/cve-2007-4091.html","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/26493","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/26518","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/26537","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/26543","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/26548","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/26634","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/26822","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/26911","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/27896","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/61039","source":"cve@mitre.org"},{"url":"http://security.gentoo.org/glsa/glsa-200709-13.xml","source":"cve@mitre.org"},{"url":"http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.481089","source":"cve@mitre.org"},{"url":"http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15548.html","source":"cve@mitre.org"},{"url":"http://www.debian.org/security/2007/dsa-1360","source":"cve@mitre.org"},{"url":"http://www.novell.com/linux/security/advisories/2007_17_sr.html","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/archive/1/477628/100/0/threaded","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/25336","source":"cve@mitre.org"},{"url":"http://www.trustix.org/errata/2007/0026/","source":"cve@mitre.org"},{"url":"http://www.ubuntu.com/usn/usn-500-1","source":"cve@mitre.org"},{"url":"http://www.vupen.com/english/advisories/2007/2915","source":"cve@mitre.org"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/36072","source":"cve@mitre.org"},{"url":"https://issues.rpath.com/browse/RPL-1647","source":"cve@mitre.org"},{"url":"http://article.gmane.org/gmane.linux.debian.devel.bugs.general/291908","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://c-skills.blogspot.com/2007/08/cve-2007-4091.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/26493","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/26518","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/26537","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/26543","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/26548","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/26634","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/26822","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/26911","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/27896","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/61039","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://security.gentoo.org/glsa/glsa-200709-13.xml","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.481089","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15548.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.debian.org/security/2007/dsa-1360","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.novell.com/linux/security/advisories/2007_17_sr.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/archive/1/477628/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/25336","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.trustix.org/errata/2007/0026/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.ubuntu.com/usn/usn-500-1","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2007/2915","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/36072","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://issues.rpath.com/browse/RPL-1647","source":"af854a3a-2127-422b-91ae-364da2661108"}],"vendorComments":[{"organization":"Red Hat","comment":"Not vulnerable.  This flaw did not affect Red Hat Enterprise Linux 2.1, 3, or 4 due to the version of rsync.\n\nThis flaw does exist in Red Hat Enterprise Linux 5, but due to the nature of the flaw it is not exploitable with any security consequence due to stack-protector.","lastModified":"2007-08-22T00:00:00"}]}},{"cve":{"id":"CVE-2007-6199","sourceIdentifier":"cve@mitre.org","published":"2007-12-01T06:46:00.000","lastModified":"2026-04-23T00:35:47.467","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"rsync before 3.0.0pre6, when running a writable rsync daemon that is not using chroot, allows remote attackers to access restricted files via unknown vectors that cause rsync to create a symlink that points outside of the module's hierarchy."},{"lang":"es","value":"rsync, en versiones anteriores a la 3.0.0pre6. Cuando se ejecuta un demonio rsync en modo lectura-escritura que no use chroot, se permite así que atacantes remotos  accedan a ficheros de acceso restringido, usando vectores desconocidos que provocan que rsync cree un enlace simbólico que apunta fuera de la jerarquía de ficheros del módulo."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:C/I:C/A:C","baseScore":9.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.6,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-16"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:slackware:slackware_linux:8.1:*:*:*:*:*:*:*","matchCriteriaId":"57F41B40-75E6-45C8-A5FB-8464C0B2D064"},{"vulnerable":false,"criteria":"cpe:2.3:o:slackware:slackware_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"300A6A65-05FD-401C-80F6-B5F5B1F056E0"},{"vulnerable":false,"criteria":"cpe:2.3:o:slackware:slackware_linux:9.1:*:*:*:*:*:*:*","matchCriteriaId":"AA3D53C9-3806-45E6-8AE9-7D41280EF64C"},{"vulnerable":false,"criteria":"cpe:2.3:o:slackware:slackware_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"D29C5A03-A7C9-4780-BB63-CF1E874D018D"},{"vulnerable":false,"criteria":"cpe:2.3:o:slackware:slackware_linux:10.1:*:*:*:*:*:*:*","matchCriteriaId":"B85EF0EE-3E61-4CA3-9F00-610AB2E1CFCF"},{"vulnerable":false,"criteria":"cpe:2.3:o:slackware:slackware_linux:10.2:*:*:*:*:*:*:*","matchCriteriaId":"70440F49-AEE9-41BE-8E1A-43AB657C8E09"},{"vulnerable":false,"criteria":"cpe:2.3:o:slackware:slackware_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"74022B69-6557-4746-9080-24E4DDA44026"},{"vulnerable":false,"criteria":"cpe:2.3:o:slackware:slackware_linux:12.0:*:*:*:*:*:*:*","matchCriteriaId":"2081CB54-130C-4A25-A2EE-42249DD6B3EB"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.3.1:*:*:*:*:*:*:*","matchCriteriaId":"393F7E04-2288-45FE-8971-CC1BA036CA95"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.3.2:*:*:*:*:*:*:*","matchCriteriaId":"60BF457A-B318-475D-950A-9D873C0C667C"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.3.2_1.2alpha:*:*:*:*:*:*:*","matchCriteriaId":"8CB9C4CB-09D9-4258-846D-D43C0E8E0CEA"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.3.2_1.2arm:*:*:*:*:*:*:*","matchCriteriaId":"52CA63EE-0911-44AE-9901-FE46FB659D06"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.3.2_1.2intel:*:*:*:*:*:*:*","matchCriteriaId":"AF678D2B-CD03-4A19-90B4-36448E55943E"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.3.2_1.2m68k:*:*:*:*:*:*:*","matchCriteriaId":"E454C988-08A3-4269-AC6A-2A975D288C56"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.3.2_1.2ppc:*:*:*:*:*:*:*","matchCriteriaId":"12BB68EF-28DF-4326-84A3-C215005FD3D3"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.3.2_1.2sparc:*:*:*:*:*:*:*","matchCriteriaId":"41DC890B-3D3D-41DB-8380-5C290B708350"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.3.2_1.3:*:*:*:*:*:*:*","matchCriteriaId":"3C0E3499-E90D-40C6-B85A-6CC2312532C9"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.4.0:*:*:*:*:*:*:*","matchCriteriaId":"C23042EA-1243-4786-8F76-CDB94E5B909B"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.4.1:*:*:*:*:*:*:*","matchCriteriaId":"31F7C3A4-88F3-454F-9046-CA169FF12106"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.4.3:*:*:*:*:*:*:*","matchCriteriaId":"63756B36-3D03-4C2E-A1B6-AC45B045F94F"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.4.4:*:*:*:*:*:*:*","matchCriteriaId":"BDF2B595-4AF1-471E-ADFD-FF8CB6F27EA8"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.4.5:*:*:*:*:*:*:*","matchCriteriaId":"FC820774-2B62-4B91-BC1A-EF6B81DD63C3"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.4.6:*:*:*:*:*:*:*","matchCriteriaId":"4329E28A-F133-414B-98E5-F117C1B73711"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.4.8:*:*:*:*:*:*:*","matchCriteriaId":"FE1E7733-4A97-4817-8192-BDAA539AD2F7"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.5.0:*:*:*:*:*:*:*","matchCriteriaId":"EEB2A38C-5971-4C38-A2A8-7B8FD44C3816"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.5.1:*:*:*:*:*:*:*","matchCriteriaId":"BCD479A6-7E13-41FB-B6D9-4CBA1459083B"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.5.2:*:*:*:*:*:*:*","matchCriteriaId":"D08AA818-CEF0-4EA8-BF6B-90A4F512E88C"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.5.3:*:*:*:*:*:*:*","matchCriteriaId":"2AE611E6-4959-4011-A57A-6774F28D58D6"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.5.4:*:*:*:*:*:*:*","matchCriteriaId":"7DEEFC01-69A5-4760-8052-FB8BA4B125F0"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.5.5:*:*:*:*:*:*:*","matchCriteriaId":"A19ACD7B-B36E-42D7-B311-69CD4EF047F4"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.5.6:*:*:*:*:*:*:*","matchCriteriaId":"1AA7F4E9-1ED4-4D2F-A0A2-F8D861AD108C"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.5.7:*:*:*:*:*:*:*","matchCriteriaId":"8D9A038C-C0B8-416D-B103-5E66963065EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.6:*:*:*:*:*:*:*","matchCriteriaId":"3C1BB055-0489-42F7-9FC7-99EDDA7026DE"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.6.1:*:*:*:*:*:*:*","matchCriteriaId":"336FF990-61EE-4F6B-B4BC-D268DADD3D7F"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.6.2:*:*:*:*:*:*:*","matchCriteriaId":"408FDC67-6862-4482-9DC4-E18AFFC3F7C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.6.5:*:*:*:*:*:*:*","matchCriteriaId":"65282BE4-26FA-4E16-B1B1-1A4D82E7C6C2"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.6.6:*:*:*:*:*:*:*","matchCriteriaId":"84537850-6D26-47D3-9888-810B8305BD3A"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.6.7:*:*:*:*:*:*:*","matchCriteriaId":"8AD67864-2BED-42AD-985E-34058C07FEBA"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.6.8:*:*:*:*:*:*:*","matchCriteriaId":"382AFB02-339D-45BB-A60D-7C751F943762"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.6.9:*:*:*:*:*:*:*","matchCriteriaId":"32A205AF-8E75-4AD8-BE0F-EC6A9296D127"}]}]}],"references":[{"url":"http://lists.apple.com/archives/security-announce//2008/Jul/msg00003.html","source":"cve@mitre.org"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00002.html","source":"cve@mitre.org"},{"url":"http://rsync.samba.org/security.html#s3_0_0","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/27853","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/27863","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://secunia.com/advisories/28412","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/28457","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/31326","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/61005","source":"cve@mitre.org"},{"url":"http://securitytracker.com/id?1019012","source":"cve@mitre.org"},{"url":"http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15549.html","source":"cve@mitre.org"},{"url":"http://wiki.rpath.com/wiki/Advisories:rPSA-2007-0257","source":"cve@mitre.org"},{"url":"http://www.mandriva.com/en/security/advisories?name=MDVSA-2008:011","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/archive/1/487991/100/0/threaded","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/26638","source":"cve@mitre.org","tags":["Patch"]},{"url":"http://www.vupen.com/english/advisories/2007/4057","source":"cve@mitre.org"},{"url":"http://www.vupen.com/english/advisories/2008/2268","source":"cve@mitre.org"},{"url":"http://lists.apple.com/archives/security-announce//2008/Jul/msg00003.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00002.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://rsync.samba.org/security.html#s3_0_0","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/27853","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/27863","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://secunia.com/advisories/28412","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/28457","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/31326","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/61005","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://securitytracker.com/id?1019012","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://support.f5.com/kb/en-us/solutions/public/15000/500/sol15549.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://wiki.rpath.com/wiki/Advisories:rPSA-2007-0257","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.mandriva.com/en/security/advisories?name=MDVSA-2008:011","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/archive/1/487991/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/26638","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"http://www.vupen.com/english/advisories/2007/4057","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2008/2268","source":"af854a3a-2127-422b-91ae-364da2661108"}],"vendorComments":[{"organization":"Red Hat","comment":"Red Hat does not consider this to be a security issue. Versions of rsync as shipped with Red Hat Enterprise Linux 2.1, 3, 4 and 5 behave as expected and that behavior was well documented.","lastModified":"2007-12-06T00:00:00"}]}},{"cve":{"id":"CVE-2007-6200","sourceIdentifier":"cve@mitre.org","published":"2007-12-01T06:46:00.000","lastModified":"2026-04-23T00:35:47.467","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Unspecified vulnerability in rsync before 3.0.0pre6, when running a writable rsync daemon, allows remote attackers to bypass exclude, exclude_from, and filter and read or write hidden files via (1) symlink, (2) partial-dir, (3) backup-dir, and unspecified (4) dest options."},{"lang":"es","value":"Vulnerabilidad no especificada en rsync, en versiones anteriores a la 3.0.0pre6, cuando se ejecuta un demonio rsync en modo lectura-escritura.  Permite que atacantes remotos  vulneren exclude, exclude_from, y filter, además de poder leer y escribir archivos ocultos usando: (1) symlink, (2) partial-dir, (3) backup-dir, y (4) opciones dest sin especificar."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:C/I:C/A:C","baseScore":10.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-264"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:slackware:slackware_linux:8.1:*:*:*:*:*:*:*","matchCriteriaId":"57F41B40-75E6-45C8-A5FB-8464C0B2D064"},{"vulnerable":false,"criteria":"cpe:2.3:o:slackware:slackware_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"300A6A65-05FD-401C-80F6-B5F5B1F056E0"},{"vulnerable":false,"criteria":"cpe:2.3:o:slackware:slackware_linux:9.1:*:*:*:*:*:*:*","matchCriteriaId":"AA3D53C9-3806-45E6-8AE9-7D41280EF64C"},{"vulnerable":false,"criteria":"cpe:2.3:o:slackware:slackware_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"D29C5A03-A7C9-4780-BB63-CF1E874D018D"},{"vulnerable":false,"criteria":"cpe:2.3:o:slackware:slackware_linux:10.1:*:*:*:*:*:*:*","matchCriteriaId":"B85EF0EE-3E61-4CA3-9F00-610AB2E1CFCF"},{"vulnerable":false,"criteria":"cpe:2.3:o:slackware:slackware_linux:10.2:*:*:*:*:*:*:*","matchCriteriaId":"70440F49-AEE9-41BE-8E1A-43AB657C8E09"},{"vulnerable":false,"criteria":"cpe:2.3:o:slackware:slackware_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"74022B69-6557-4746-9080-24E4DDA44026"},{"vulnerable":false,"criteria":"cpe:2.3:o:slackware:slackware_linux:12.0:*:*:*:*:*:*:*","matchCriteriaId":"2081CB54-130C-4A25-A2EE-42249DD6B3EB"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.3.1:*:*:*:*:*:*:*","matchCriteriaId":"393F7E04-2288-45FE-8971-CC1BA036CA95"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.3.2:*:*:*:*:*:*:*","matchCriteriaId":"60BF457A-B318-475D-950A-9D873C0C667C"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.3.2_1.2alpha:*:*:*:*:*:*:*","matchCriteriaId":"8CB9C4CB-09D9-4258-846D-D43C0E8E0CEA"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.3.2_1.2arm:*:*:*:*:*:*:*","matchCriteriaId":"52CA63EE-0911-44AE-9901-FE46FB659D06"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.3.2_1.2intel:*:*:*:*:*:*:*","matchCriteriaId":"AF678D2B-CD03-4A19-90B4-36448E55943E"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.3.2_1.2m68k:*:*:*:*:*:*:*","matchCriteriaId":"E454C988-08A3-4269-AC6A-2A975D288C56"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.3.2_1.2ppc:*:*:*:*:*:*:*","matchCriteriaId":"12BB68EF-28DF-4326-84A3-C215005FD3D3"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.3.2_1.2sparc:*:*:*:*:*:*:*","matchCriteriaId":"41DC890B-3D3D-41DB-8380-5C290B708350"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.3.2_1.3:*:*:*:*:*:*:*","matchCriteriaId":"3C0E3499-E90D-40C6-B85A-6CC2312532C9"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.4.0:*:*:*:*:*:*:*","matchCriteriaId":"C23042EA-1243-4786-8F76-CDB94E5B909B"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.4.1:*:*:*:*:*:*:*","matchCriteriaId":"31F7C3A4-88F3-454F-9046-CA169FF12106"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.4.3:*:*:*:*:*:*:*","matchCriteriaId":"63756B36-3D03-4C2E-A1B6-AC45B045F94F"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.4.4:*:*:*:*:*:*:*","matchCriteriaId":"BDF2B595-4AF1-471E-ADFD-FF8CB6F27EA8"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.4.5:*:*:*:*:*:*:*","matchCriteriaId":"FC820774-2B62-4B91-BC1A-EF6B81DD63C3"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.4.6:*:*:*:*:*:*:*","matchCriteriaId":"4329E28A-F133-414B-98E5-F117C1B73711"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.4.8:*:*:*:*:*:*:*","matchCriteriaId":"FE1E7733-4A97-4817-8192-BDAA539AD2F7"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.5.0:*:*:*:*:*:*:*","matchCriteriaId":"EEB2A38C-5971-4C38-A2A8-7B8FD44C3816"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.5.1:*:*:*:*:*:*:*","matchCriteriaId":"BCD479A6-7E13-41FB-B6D9-4CBA1459083B"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.5.2:*:*:*:*:*:*:*","matchCriteriaId":"D08AA818-CEF0-4EA8-BF6B-90A4F512E88C"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.5.3:*:*:*:*:*:*:*","matchCriteriaId":"2AE611E6-4959-4011-A57A-6774F28D58D6"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.5.4:*:*:*:*:*:*:*","matchCriteriaId":"7DEEFC01-69A5-4760-8052-FB8BA4B125F0"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.5.5:*:*:*:*:*:*:*","matchCriteriaId":"A19ACD7B-B36E-42D7-B311-69CD4EF047F4"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.5.6:*:*:*:*:*:*:*","matchCriteriaId":"1AA7F4E9-1ED4-4D2F-A0A2-F8D861AD108C"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.5.7:*:*:*:*:*:*:*","matchCriteriaId":"8D9A038C-C0B8-416D-B103-5E66963065EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.6:*:*:*:*:*:*:*","matchCriteriaId":"3C1BB055-0489-42F7-9FC7-99EDDA7026DE"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.6.1:*:*:*:*:*:*:*","matchCriteriaId":"336FF990-61EE-4F6B-B4BC-D268DADD3D7F"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.6.2:*:*:*:*:*:*:*","matchCriteriaId":"408FDC67-6862-4482-9DC4-E18AFFC3F7C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.6.5:*:*:*:*:*:*:*","matchCriteriaId":"65282BE4-26FA-4E16-B1B1-1A4D82E7C6C2"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.6.6:*:*:*:*:*:*:*","matchCriteriaId":"84537850-6D26-47D3-9888-810B8305BD3A"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.6.7:*:*:*:*:*:*:*","matchCriteriaId":"8AD67864-2BED-42AD-985E-34058C07FEBA"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.6.8:*:*:*:*:*:*:*","matchCriteriaId":"382AFB02-339D-45BB-A60D-7C751F943762"},{"vulnerable":true,"criteria":"cpe:2.3:a:rsync:rsync:2.6.9:*:*:*:*:*:*:*","matchCriteriaId":"32A205AF-8E75-4AD8-BE0F-EC6A9296D127"}]}]}],"references":[{"url":"http://lists.apple.com/archives/security-announce//2008/Jul/msg00003.html","source":"cve@mitre.org"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00002.html","source":"cve@mitre.org"},{"url":"http://rsync.samba.org/security.html#s3_0_0","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://secunia.com/advisories/27853","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/27863","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"http://secunia.com/advisories/28412","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/28457","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/31326","source":"cve@mitre.org"},{"url":"http://securitytracker.com/id?1019012","source":"cve@mitre.org"},{"url":"http://wiki.rpath.com/wiki/Advisories:rPSA-2007-0257","source":"cve@mitre.org"},{"url":"http://www.mandriva.com/en/security/advisories?name=MDVSA-2008:011","source":"cve@mitre.org"},{"url":"http://www.redhat.com/support/errata/RHSA-2011-0999.html","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/archive/1/487991/100/0/threaded","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/26639","source":"cve@mitre.org"},{"url":"http://www.vupen.com/english/advisories/2007/4057","source":"cve@mitre.org"},{"url":"http://www.vupen.com/english/advisories/2008/2268","source":"cve@mitre.org"},{"url":"http://lists.apple.com/archives/security-announce//2008/Jul/msg00003.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00002.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://rsync.samba.org/security.html#s3_0_0","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://secunia.com/advisories/27853","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/27863","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://secunia.com/advisories/28412","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/28457","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/31326","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://securitytracker.com/id?1019012","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://wiki.rpath.com/wiki/Advisories:rPSA-2007-0257","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.mandriva.com/en/security/advisories?name=MDVSA-2008:011","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.redhat.com/support/errata/RHSA-2011-0999.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/archive/1/487991/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/26639","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2007/4057","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2008/2268","source":"af854a3a-2127-422b-91ae-364da2661108"}],"vendorComments":[{"organization":"Red Hat","comment":"Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=CVE-2007-6200\n\nThe Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw.","lastModified":"2007-12-06T00:00:00"}]}},{"cve":{"id":"CVE-2007-6350","sourceIdentifier":"cve@mitre.org","published":"2007-12-14T20:46:00.000","lastModified":"2026-04-23T00:35:47.467","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"scponly 4.6 and earlier allows remote authenticated users to bypass intended restrictions and execute code by invoking dangerous subcommands including (1) unison, (2) rsync, (3) svn, and (4) svnserve, as originally demonstrated by creating a Subversion (SVN) repository with malicious hooks, then using svn to trigger execution of those hooks."},{"lang":"es","value":"scponly versiones 4.6 y anteriores, permite a los usuarios autenticados remotos omitir las restricciones previstas y ejecutar código invocando subcomandos peligrosos incluyendo (1) unison, (2) rsync, (3) svn, y (4) svnserve, como es demostrado originalmente mediante la creación de un repositorio Subversion (SVN) con ganchos (hooks) maliciosos, luego usando svn para desencadenar la ejecución de esos ganchos (hooks)."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:S/C:C/I:C/A:C","baseScore":8.5,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"SINGLE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":6.8,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-264"},{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:scponly:scponly:*:*:*:*:*:*:*:*","versionEndIncluding":"4.6","matchCriteriaId":"117508D1-B46B-42BC-B782-FA07405AD92F"},{"vulnerable":true,"criteria":"cpe:2.3:a:scponly:scponly:4.2:*:*:*:*:*:*:*","matchCriteriaId":"9103A4C8-9706-4C9A-872A-8655A3E2C33D"},{"vulnerable":true,"criteria":"cpe:2.3:a:scponly:scponly:4.3:*:*:*:*:*:*:*","matchCriteriaId":"8C9647F5-2FA5-44ED-9D36-3C32BAB26CED"},{"vulnerable":true,"criteria":"cpe:2.3:a:scponly:scponly:4.4:*:*:*:*:*:*:*","matchCriteriaId":"BDE94CA7-C407-4C32-A012-71547850CA64"},{"vulnerable":true,"criteria":"cpe:2.3:a:scponly:scponly:4.5:*:*:*:*:*:*:*","matchCriteriaId":"9895B767-8B21-4992-9C78-BB682E50658C"}]}]}],"references":[{"url":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=437148","source":"cve@mitre.org"},{"url":"http://bugs.gentoo.org/show_bug.cgi?id=201726","source":"cve@mitre.org"},{"url":"http://osvdb.org/44137","source":"cve@mitre.org"},{"url":"http://scponly.cvs.sourceforge.net/scponly/scponly/SECURITY?view=markup","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/28123","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://secunia.com/advisories/28538","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://secunia.com/advisories/28944","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://secunia.com/advisories/28981","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://security.gentoo.org/glsa/glsa-200802-06.xml","source":"cve@mitre.org"},{"url":"http://www.debian.org/security/2008/dsa-1473","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/26900","source":"cve@mitre.org"},{"url":"http://www.securitytracker.com/id?1019103","source":"cve@mitre.org"},{"url":"http://www.vupen.com/english/advisories/2007/4243","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00546.html","source":"cve@mitre.org"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00595.html","source":"cve@mitre.org"},{"url":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=437148","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://bugs.gentoo.org/show_bug.cgi?id=201726","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://osvdb.org/44137","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://scponly.cvs.sourceforge.net/scponly/scponly/SECURITY?view=markup","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/28123","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://secunia.com/advisories/28538","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://secunia.com/advisories/28944","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://secunia.com/advisories/28981","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://security.gentoo.org/glsa/glsa-200802-06.xml","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.debian.org/security/2008/dsa-1473","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/26900","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securitytracker.com/id?1019103","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2007/4243","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00546.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00595.html","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2008-1720","sourceIdentifier":"secalert@redhat.com","published":"2008-04-10T19:05:00.000","lastModified":"2026-04-23T00:35:47.467","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Buffer overflow in rsync 2.6.9 to 3.0.1, with extended attribute (xattr) support enabled, might allow remote attackers to execute arbitrary code via unknown vectors."},{"lang":"es","value":"Desbordamiento de búfer en resync2.6.9 a 3.0.1, al activar el soporte de atributos extendidos  (xattr), puede permitir a atacantes remotos ejecutar código de su elección a través de vectores desconocidos."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":true,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-119"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.6.9:*:*:*:*:*:*:*","matchCriteriaId":"FEA9CA2C-640D-407E-B1A1-B796CD4F4022"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.7.0:*:*:*:*:*:*:*","matchCriteriaId":"E6525C2F-2572-4310-9D30-B198CB384984"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.7.1:*:*:*:*:*:*:*","matchCriteriaId":"6DBCAA31-D770-451A-A0FE-7A6E8A99416D"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.7.2:*:*:*:*:*:*:*","matchCriteriaId":"EBB31395-F275-473B-B86B-B2E758BA2D47"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.7.3:*:*:*:*:*:*:*","matchCriteriaId":"374E5F91-0E56-4191-B739-4D519DDE9792"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.7.4:*:*:*:*:*:*:*","matchCriteriaId":"662396BC-14FB-45C6-9C5B-C557A5DE2E96"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.7.5:*:*:*:*:*:*:*","matchCriteriaId":"A34821C0-3586-4160-B3AD-C49C27EEE05C"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.7.6:*:*:*:*:*:*:*","matchCriteriaId":"2C7901A8-84D3-4852-A439-C12EB471C21C"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.7.7:*:*:*:*:*:*:*","matchCriteriaId":"19AA7B76-8AEB-4B5C-B7F4-82899D200951"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.7.8:*:*:*:*:*:*:*","matchCriteriaId":"88559A7B-9063-4952-928A-2FE6242D3FB1"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.7.9:*:*:*:*:*:*:*","matchCriteriaId":"AB40E21F-55FA-4E2F-8A53-3CDF12754882"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.8.0:*:*:*:*:*:*:*","matchCriteriaId":"23834146-79D3-40F1-857A-339D5BD15DC7"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.8.1:*:*:*:*:*:*:*","matchCriteriaId":"C7C41B8A-8330-4C5F-A0BA-854E96C3F686"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.8.2:*:*:*:*:*:*:*","matchCriteriaId":"8EAD7F16-C6FD-4499-8CC9-310379DE8CE0"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.8.3:*:*:*:*:*:*:*","matchCriteriaId":"9B965433-0880-43F3-996F-7F2FAA951B2E"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.8.4:*:*:*:*:*:*:*","matchCriteriaId":"9191C5BE-F4CF-4285-AFCE-FB0F58F7868E"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.8.5:*:*:*:*:*:*:*","matchCriteriaId":"DBEDC1BF-B858-420D-8471-BE6F9BD766CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.8.6:*:*:*:*:*:*:*","matchCriteriaId":"D214AC3E-7D71-4019-BF13-3B037F345D10"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.8.7:*:*:*:*:*:*:*","matchCriteriaId":"8056C095-00C3-48A9-8F00-8EC3CA71AE48"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.8.8:*:*:*:*:*:*:*","matchCriteriaId":"72EA2B26-61BC-4513-9B11-7C21477F93BF"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.8.9:*:*:*:*:*:*:*","matchCriteriaId":"BEECBA41-4E06-4D26-AD66-1698C39CB4C6"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.9.0:*:*:*:*:*:*:*","matchCriteriaId":"10E73D14-2BBB-4E6E-970D-58C9D678CB07"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.9.1:*:*:*:*:*:*:*","matchCriteriaId":"58239BB8-F979-4902-807F-7037FA10D13D"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.9.2:*:*:*:*:*:*:*","matchCriteriaId":"D494532E-87C1-435A-B41C-C446EA100FFF"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.9.3:*:*:*:*:*:*:*","matchCriteriaId":"2AF3AD10-C818-4510-AAB3-E760D48FDC2E"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.9.4:*:*:*:*:*:*:*","matchCriteriaId":"3EB3A011-194C-4F0C-8DA2-48C592C9369A"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.9.5:*:*:*:*:*:*:*","matchCriteriaId":"7B29F059-2213-4D01-A704-95A5620AE1DA"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.9.6:*:*:*:*:*:*:*","matchCriteriaId":"F5774F2C-A9D4-4E92-8832-A7CC2F25B682"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.9.7:*:*:*:*:*:*:*","matchCriteriaId":"CB2845B1-800A-4A87-A11E-94919CBA5655"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.9.8:*:*:*:*:*:*:*","matchCriteriaId":"4779C728-4B69-4B75-92A2-45E5D41FCC17"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.9.9:*:*:*:*:*:*:*","matchCriteriaId":"99BA0BEE-7C5F-47BD-AE02-68F69E52EA5C"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.0.0:*:*:*:*:*:*:*","matchCriteriaId":"7313AE31-C2AA-4A06-98BB-0AD3FAB7AAAF"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.0.1:*:*:*:*:*:*:*","matchCriteriaId":"C44A273A-4613-44DC-905B-8EEDC035799C"}]}]}],"references":[{"url":"http://lists.opensuse.org/opensuse-security-announce/2008-05/msg00000.html","source":"secalert@redhat.com"},{"url":"http://marc.info/?l=bugtraq&m=125017764422557&w=2","source":"secalert@redhat.com"},{"url":"http://rsync.samba.org/ftp/rsync/security/rsync-3.0.1-xattr-alloc.diff","source":"secalert@redhat.com","tags":["Patch"]},{"url":"http://samba.anu.edu.au/rsync/security.html#s3_0_2","source":"secalert@redhat.com","tags":["Patch"]},{"url":"http://secunia.com/advisories/29668","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/29770","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/29777","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/29781","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/29788","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/29856","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/29861","source":"secalert@redhat.com"},{"url":"http://security.gentoo.org/glsa/glsa-200804-16.xml","source":"secalert@redhat.com"},{"url":"http://sourceforge.net/project/shownotes.php?release_id=591462&group_id=69227","source":"secalert@redhat.com"},{"url":"http://www.debian.org/security/2008/dsa-1545","source":"secalert@redhat.com"},{"url":"http://www.mail-archive.com/rsync-announce%40lists.samba.org/msg00057.html","source":"secalert@redhat.com"},{"url":"http://www.mandriva.com/security/advisories?name=MDVSA-2008:084","source":"secalert@redhat.com"},{"url":"http://www.osvdb.org/44368","source":"secalert@redhat.com"},{"url":"http://www.osvdb.org/44369","source":"secalert@redhat.com"},{"url":"http://www.securityfocus.com/bid/28726","source":"secalert@redhat.com"},{"url":"http://www.securitytracker.com/id?1019835","source":"secalert@redhat.com"},{"url":"http://www.vupen.com/english/advisories/2008/1191/references","source":"secalert@redhat.com"},{"url":"http://www.vupen.com/english/advisories/2008/1215/references","source":"secalert@redhat.com"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/41766","source":"secalert@redhat.com"},{"url":"https://usn.ubuntu.com/600-1/","source":"secalert@redhat.com"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00237.html","source":"secalert@redhat.com"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00247.html","source":"secalert@redhat.com"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2008-05/msg00000.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://marc.info/?l=bugtraq&m=125017764422557&w=2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://rsync.samba.org/ftp/rsync/security/rsync-3.0.1-xattr-alloc.diff","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"http://samba.anu.edu.au/rsync/security.html#s3_0_2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"http://secunia.com/advisories/29668","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/29770","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/29777","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/29781","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/29788","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/29856","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/29861","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://security.gentoo.org/glsa/glsa-200804-16.xml","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://sourceforge.net/project/shownotes.php?release_id=591462&group_id=69227","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.debian.org/security/2008/dsa-1545","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.mail-archive.com/rsync-announce%40lists.samba.org/msg00057.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.mandriva.com/security/advisories?name=MDVSA-2008:084","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.osvdb.org/44368","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.osvdb.org/44369","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/28726","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securitytracker.com/id?1019835","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2008/1191/references","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2008/1215/references","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/41766","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://usn.ubuntu.com/600-1/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00237.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00247.html","source":"af854a3a-2127-422b-91ae-364da2661108"}],"vendorComments":[{"organization":"Red Hat","comment":"Not vulnerable. This issue did not affect versions of rsync as shipped with Red Hat Enterprise Linux 2.1, 3, 4, or 5.","lastModified":"2008-04-15T00:00:00"}]}},{"cve":{"id":"CVE-2009-3369","sourceIdentifier":"cve@mitre.org","published":"2009-09-24T16:30:02.407","lastModified":"2026-04-23T00:35:47.467","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"CgiUserConfigEdit in BackupPC 3.1.0, when SSH keys and Rsync are in use in a multi-user environment, does not restrict users from the ClientNameAlias function, which allows remote authenticated users to read and write sensitive files by modifying ClientNameAlias to match another system, then initiating a backup or restore."},{"lang":"es","value":"CgiUserConfigEdit en BackupP v3.1.0, cuando las claves SSH y Rsync están en uso en un entorno multiusuario, no limita el acceso a los usuarios desde la función CLientNameAlias, lo que permite a usuarios autenticados remotamente la lectura y escritura de archivos sensibles mediante la modificación de ClientNameAlias para que coincida con el de otro sustema, y después iniciando una copia de seguridad o restaurándola."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:S/C:C/I:C/A:C","baseScore":8.5,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"SINGLE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":6.8,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":true,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-264"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:backuppc:backuppc:3.1.0:*:*:*:*:*:*:*","matchCriteriaId":"0509FE0E-E483-4A6B-9653-F1DBDA321DA5"}]}]}],"references":[{"url":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=542218","source":"cve@mitre.org"},{"url":"http://osvdb.org/57236","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/36393","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://secunia.com/advisories/37161","source":"cve@mitre.org"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=518412","source":"cve@mitre.org"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00694.html","source":"cve@mitre.org"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00729.html","source":"cve@mitre.org"},{"url":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=542218","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://osvdb.org/57236","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/36393","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://secunia.com/advisories/37161","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=518412","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00694.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00729.html","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2010-3594","sourceIdentifier":"secalert_us@oracle.com","published":"2011-01-19T16:00:02.750","lastModified":"2026-04-29T01:13:23.040","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Unspecified vulnerability in the Real User Experience Insight component in Oracle Enterprise Manager Grid Control 6.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Processing.  NOTE: the previous information was obtained from the January 2011 CPU.  Oracle has not commented on claims from a reliable third party coordinator that this is SQL injection in rsynclogdird involving improper escaping of UTF-8 characters while processing log files."},{"lang":"es","value":"Una vulnerabilidad no especificada en el componente Real User Experience Insight en Enterprise Manager Grid Control de Oracle versión 6.0, permite a los atacantes remotos afectar a la confidencialidad y la integridad por medio de vectores desconocidos relacionados con Processing. NOTA: la información anterior fue obtenida de la CPU de enero de 2011. Oracle no ha comentado las afirmaciones de un coordinador de terceros confiable de que se trata de la inyección SQL en rsynclogdird que implica el escape inapropiado de caracteres UTF-8 al procesar archivos de registro."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:N","baseScore":6.4,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":4.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:enterprise_manager_grid_control:6.0:*:*:*:*:*:*:*","matchCriteriaId":"47D89639-9E53-46BE-A541-DD1D4A230751"}]}]}],"references":[{"url":"http://secunia.com/advisories/42973","source":"secalert_us@oracle.com","tags":["Vendor Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html","source":"secalert_us@oracle.com","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/45874","source":"secalert_us@oracle.com"},{"url":"http://www.securitytracker.com/id?1024979","source":"secalert_us@oracle.com"},{"url":"http://www.vupen.com/english/advisories/2011/0140","source":"secalert_us@oracle.com","tags":["Vendor Advisory"]},{"url":"http://www.zerodayinitiative.com/advisories/ZDI-11-016/","source":"secalert_us@oracle.com"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/64779","source":"secalert_us@oracle.com"},{"url":"http://secunia.com/advisories/42973","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/45874","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securitytracker.com/id?1024979","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2011/0140","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.zerodayinitiative.com/advisories/ZDI-11-016/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/64779","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2011-1097","sourceIdentifier":"secalert@redhat.com","published":"2011-03-30T22:55:01.987","lastModified":"2026-04-29T01:13:23.040","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"rsync 3.x before 3.0.8, when certain recursion, deletion, and ownership options are used, allows remote rsync servers to cause a denial of service (heap memory corruption and application crash) or possibly execute arbitrary code via malformed data."},{"lang":"es","value":"rsync 3.x anterior a3.0.8, cuando se utilizan ciertas opciones de recursión, borrado, y propietario, permite a los servidores rsync remotos provocar una denegación de servicio (corrupción de memoria dinámica y caída de la aplicación) o posiblemente ejecutar código arbitrario a través de datos con formato incorrecto."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:H/Au:N/C:P/I:P/A:P","baseScore":5.1,"accessVector":"NETWORK","accessComplexity":"HIGH","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":4.9,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-119"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.0.0:*:*:*:*:*:*:*","matchCriteriaId":"7313AE31-C2AA-4A06-98BB-0AD3FAB7AAAF"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.0.1:*:*:*:*:*:*:*","matchCriteriaId":"C44A273A-4613-44DC-905B-8EEDC035799C"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.0.2:*:*:*:*:*:*:*","matchCriteriaId":"CDA1C380-B119-4FA8-B75B-272DF7791D8B"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.0.3:*:*:*:*:*:*:*","matchCriteriaId":"58D8B6CB-9968-4697-B87D-03DB7D150BEC"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.0.4:*:*:*:*:*:*:*","matchCriteriaId":"B6659AB2-3361-4E91-A55D-BE09DE94B579"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.0.5:*:*:*:*:*:*:*","matchCriteriaId":"6B4B557A-9F40-415C-9919-955B3E0D5253"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.0.6:*:*:*:*:*:*:*","matchCriteriaId":"1E48129D-B453-4048-BB18-AF52C97373F7"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.0.7:*:*:*:*:*:*:*","matchCriteriaId":"10DA1C5D-EF59-4633-B279-5B317306DA52"}]}]}],"references":[{"url":"http://gitweb.samba.org/?p=rsync.git%3Ba=commit%3Bh=83b94efa6b60a3ff5eee4c5f7812c617a90a03f6","source":"secalert@redhat.com"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057641.html","source":"secalert@redhat.com"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057736.html","source":"secalert@redhat.com"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057737.html","source":"secalert@redhat.com"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html","source":"secalert@redhat.com"},{"url":"http://lists.samba.org/archive/rsync/2011-January/025988.html","source":"secalert@redhat.com"},{"url":"http://marc.info/?l=bugtraq&m=133226187115472&w=2","source":"secalert@redhat.com"},{"url":"http://rsync.samba.org/ftp/rsync/src/rsync-3.0.8-NEWS","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/44071","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/44088","source":"secalert@redhat.com"},{"url":"http://securitytracker.com/id?1025256","source":"secalert@redhat.com"},{"url":"http://www.mandriva.com/security/advisories?name=MDVSA-2011:066","source":"secalert@redhat.com"},{"url":"http://www.redhat.com/support/errata/RHSA-2011-0390.html","source":"secalert@redhat.com"},{"url":"http://www.vupen.com/english/advisories/2011/0792","source":"secalert@redhat.com","tags":["Vendor Advisory"]},{"url":"http://www.vupen.com/english/advisories/2011/0793","source":"secalert@redhat.com","tags":["Vendor Advisory"]},{"url":"http://www.vupen.com/english/advisories/2011/0873","source":"secalert@redhat.com"},{"url":"http://www.vupen.com/english/advisories/2011/0876","source":"secalert@redhat.com"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=675036","source":"secalert@redhat.com","tags":["Patch"]},{"url":"https://bugzilla.samba.org/show_bug.cgi?id=7936","source":"secalert@redhat.com"},{"url":"http://gitweb.samba.org/?p=rsync.git%3Ba=commit%3Bh=83b94efa6b60a3ff5eee4c5f7812c617a90a03f6","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057641.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057736.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057737.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.samba.org/archive/rsync/2011-January/025988.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://marc.info/?l=bugtraq&m=133226187115472&w=2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://rsync.samba.org/ftp/rsync/src/rsync-3.0.8-NEWS","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/44071","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/44088","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://securitytracker.com/id?1025256","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.mandriva.com/security/advisories?name=MDVSA-2011:066","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.redhat.com/support/errata/RHSA-2011-0390.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2011/0792","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.vupen.com/english/advisories/2011/0793","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.vupen.com/english/advisories/2011/0873","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2011/0876","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=675036","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"https://bugzilla.samba.org/show_bug.cgi?id=7936","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2012-2251","sourceIdentifier":"security@debian.org","published":"2013-01-11T01:55:00.760","lastModified":"2026-04-29T01:13:23.040","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"rssh 2.3.2, as used by Debian, Fedora, and others, when the rsync protocol is enabled, allows local users to bypass intended restricted shell access via a (1) \"-e\" or (2) \"--\" command line option."},{"lang":"es","value":"rssh v2.3.2, tal y como como se usa en Debian, Fedora, y otros, cuando el protocolo rsync está habilitado, permite a los usuarios locales eludir las restricciones de acceso a través de una opción (1) \"-e\" o (2) \"--\" de la línea de comandos.\r\n"}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:M/Au:N/C:P/I:P/A:P","baseScore":4.4,"accessVector":"LOCAL","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":3.4,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:pizzashack:rssh:2.3.2:*:*:*:*:*:*:*","matchCriteriaId":"2F69D6E8-00A6-417C-A458-F8C4B90CB694"},{"vulnerable":false,"criteria":"cpe:2.3:o:debian:debian_linux:*:*:*:*:*:*:*:*","matchCriteriaId":"4C8919F1-CD33-437E-9627-69352B276BA3"},{"vulnerable":false,"criteria":"cpe:2.3:o:fedoraproject:fedora:*:*:*:*:*:*:*:*","matchCriteriaId":"20294CE7-12C8-43CA-A702-5ED2A3044FFC"}]}]}],"references":[{"url":"http://archives.neohapsis.com/archives/bugtraq/2012-11/0101.html","source":"security@debian.org"},{"url":"http://secunia.com/advisories/51307","source":"security@debian.org","tags":["Vendor Advisory"]},{"url":"http://www.debian.org/security/2012/dsa-2578","source":"security@debian.org"},{"url":"http://www.openwall.com/lists/oss-security/2012/11/27/15","source":"security@debian.org"},{"url":"http://www.securityfocus.com/bid/56708","source":"security@debian.org"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=877279","source":"security@debian.org"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/80334","source":"security@debian.org"},{"url":"http://archives.neohapsis.com/archives/bugtraq/2012-11/0101.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/51307","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.debian.org/security/2012/dsa-2578","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openwall.com/lists/oss-security/2012/11/27/15","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/56708","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=877279","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/80334","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2012-2252","sourceIdentifier":"security@debian.org","published":"2013-01-11T01:55:00.837","lastModified":"2026-04-29T01:13:23.040","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Incomplete blacklist vulnerability in rssh before 2.3.4, when the rsync protocol is enabled, allows local users to bypass intended restricted shell access via the --rsh command line option."},{"lang":"es","value":"Vulnerabilidad de lista negra incompleta en rssh antes de v2.3.4, cuando el protocolo rsync está activado, permite a los usuarios locales eludir las restricciones de acceso a la interfaz de comandos a través de la opción --rsh de la línea de comandos.\r\n"}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:M/Au:N/C:P/I:P/A:P","baseScore":4.4,"accessVector":"LOCAL","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":3.4,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:pizzashack:rssh:*:*:*:*:*:*:*:*","versionEndIncluding":"2.3.3","matchCriteriaId":"541B5F5E-B34F-4E0C-99A0-99AF53D7536F"},{"vulnerable":true,"criteria":"cpe:2.3:a:pizzashack:rssh:2.0.0:*:*:*:*:*:*:*","matchCriteriaId":"405D117C-7A65-48DD-B898-4E7526A47392"},{"vulnerable":true,"criteria":"cpe:2.3:a:pizzashack:rssh:2.0.1:*:*:*:*:*:*:*","matchCriteriaId":"02796C4B-F155-4D6B-9692-0C467B259B3D"},{"vulnerable":true,"criteria":"cpe:2.3:a:pizzashack:rssh:2.0.2:*:*:*:*:*:*:*","matchCriteriaId":"5D3BE629-9E24-4E48-9ADD-61174BBAD270"},{"vulnerable":true,"criteria":"cpe:2.3:a:pizzashack:rssh:2.0.3:*:*:*:*:*:*:*","matchCriteriaId":"147D0EA0-3F3E-488E-A5FF-618614B34D9C"},{"vulnerable":true,"criteria":"cpe:2.3:a:pizzashack:rssh:2.0.4:*:*:*:*:*:*:*","matchCriteriaId":"994DDFAC-D9D6-4146-8628-5014E52A6847"},{"vulnerable":true,"criteria":"cpe:2.3:a:pizzashack:rssh:2.1.0:*:*:*:*:*:*:*","matchCriteriaId":"FA58CBF8-1826-44D7-B2F0-999B8DA61F1F"},{"vulnerable":true,"criteria":"cpe:2.3:a:pizzashack:rssh:2.1.1:*:*:*:*:*:*:*","matchCriteriaId":"5D984CE9-5283-4DAE-9D42-9B5AE31A4002"},{"vulnerable":true,"criteria":"cpe:2.3:a:pizzashack:rssh:2.2.1:*:*:*:*:*:*:*","matchCriteriaId":"D718FA8D-2699-4150-AB39-357E1585EB46"},{"vulnerable":true,"criteria":"cpe:2.3:a:pizzashack:rssh:2.2.2:*:*:*:*:*:*:*","matchCriteriaId":"255C9863-4D7E-46CE-A1C9-F897EFB85D38"},{"vulnerable":true,"criteria":"cpe:2.3:a:pizzashack:rssh:2.2.3:*:*:*:*:*:*:*","matchCriteriaId":"72CB8450-D58D-4824-931F-2D61451F2C5C"},{"vulnerable":true,"criteria":"cpe:2.3:a:pizzashack:rssh:2.3.0:*:*:*:*:*:*:*","matchCriteriaId":"2C75A3EB-ABDF-458B-8B49-505791EF8749"},{"vulnerable":true,"criteria":"cpe:2.3:a:pizzashack:rssh:2.3.1:*:*:*:*:*:*:*","matchCriteriaId":"F6BACEEB-9CBD-4E94-A3EF-61E220F2D68E"},{"vulnerable":true,"criteria":"cpe:2.3:a:pizzashack:rssh:2.3.2:*:*:*:*:*:*:*","matchCriteriaId":"2F69D6E8-00A6-417C-A458-F8C4B90CB694"}]}]}],"references":[{"url":"http://archives.neohapsis.com/archives/bugtraq/2012-11/0101.html","source":"security@debian.org"},{"url":"http://osvdb.org/87926","source":"security@debian.org"},{"url":"http://secunia.com/advisories/51307","source":"security@debian.org","tags":["Vendor Advisory"]},{"url":"http://secunia.com/advisories/51343","source":"security@debian.org","tags":["Vendor Advisory"]},{"url":"http://www.debian.org/security/2012/dsa-2578","source":"security@debian.org"},{"url":"http://www.openwall.com/lists/oss-security/2012/11/27/15","source":"security@debian.org"},{"url":"http://www.openwall.com/lists/oss-security/2012/11/28/2","source":"security@debian.org"},{"url":"http://www.openwall.com/lists/oss-security/2012/11/28/3","source":"security@debian.org"},{"url":"http://www.securityfocus.com/bid/56708","source":"security@debian.org"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=880177","source":"security@debian.org"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/80335","source":"security@debian.org"},{"url":"http://archives.neohapsis.com/archives/bugtraq/2012-11/0101.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://osvdb.org/87926","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/51307","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://secunia.com/advisories/51343","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.debian.org/security/2012/dsa-2578","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openwall.com/lists/oss-security/2012/11/27/15","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openwall.com/lists/oss-security/2012/11/28/2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openwall.com/lists/oss-security/2012/11/28/3","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/56708","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=880177","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/80335","source":"af854a3a-2127-422b-91ae-364da2661108"}],"evaluatorComment":"Per: http://cwe.mitre.org/data/definitions/184.html 'CWE-184: Incomplete Blacklist'"}},{"cve":{"id":"CVE-2014-2855","sourceIdentifier":"security@ubuntu.com","published":"2014-04-23T15:55:04.593","lastModified":"2026-05-06T22:30:45.220","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The check_secret function in authenticate.c in rsync 3.1.0 and earlier allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a user name which does not exist in the secrets file."},{"lang":"es","value":"La función check_secret en authenticate.c en rsync 3.1.0 y anteriores permite a atacantes remotos causar una denegación de servicio (bucle infinito y consumo de CPU) a través de un nombre de usuario que no existe en el archivo de secretos."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:C","baseScore":7.8,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:*:*:*:*:*:*:*:*","versionEndIncluding":"3.1.0","matchCriteriaId":"CE263B95-48A6-469F-9546-3797B63DDF0F"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.6.9:*:*:*:*:*:*:*","matchCriteriaId":"FEA9CA2C-640D-407E-B1A1-B796CD4F4022"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.7.0:*:*:*:*:*:*:*","matchCriteriaId":"E6525C2F-2572-4310-9D30-B198CB384984"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.7.1:*:*:*:*:*:*:*","matchCriteriaId":"6DBCAA31-D770-451A-A0FE-7A6E8A99416D"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.7.2:*:*:*:*:*:*:*","matchCriteriaId":"EBB31395-F275-473B-B86B-B2E758BA2D47"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.7.3:*:*:*:*:*:*:*","matchCriteriaId":"374E5F91-0E56-4191-B739-4D519DDE9792"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.7.4:*:*:*:*:*:*:*","matchCriteriaId":"662396BC-14FB-45C6-9C5B-C557A5DE2E96"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.7.5:*:*:*:*:*:*:*","matchCriteriaId":"A34821C0-3586-4160-B3AD-C49C27EEE05C"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.7.6:*:*:*:*:*:*:*","matchCriteriaId":"2C7901A8-84D3-4852-A439-C12EB471C21C"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.7.7:*:*:*:*:*:*:*","matchCriteriaId":"19AA7B76-8AEB-4B5C-B7F4-82899D200951"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.7.8:*:*:*:*:*:*:*","matchCriteriaId":"88559A7B-9063-4952-928A-2FE6242D3FB1"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.7.9:*:*:*:*:*:*:*","matchCriteriaId":"AB40E21F-55FA-4E2F-8A53-3CDF12754882"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.8.0:*:*:*:*:*:*:*","matchCriteriaId":"23834146-79D3-40F1-857A-339D5BD15DC7"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.8.1:*:*:*:*:*:*:*","matchCriteriaId":"C7C41B8A-8330-4C5F-A0BA-854E96C3F686"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.8.2:*:*:*:*:*:*:*","matchCriteriaId":"8EAD7F16-C6FD-4499-8CC9-310379DE8CE0"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.8.3:*:*:*:*:*:*:*","matchCriteriaId":"9B965433-0880-43F3-996F-7F2FAA951B2E"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.8.4:*:*:*:*:*:*:*","matchCriteriaId":"9191C5BE-F4CF-4285-AFCE-FB0F58F7868E"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.8.5:*:*:*:*:*:*:*","matchCriteriaId":"DBEDC1BF-B858-420D-8471-BE6F9BD766CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.8.6:*:*:*:*:*:*:*","matchCriteriaId":"D214AC3E-7D71-4019-BF13-3B037F345D10"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.8.7:*:*:*:*:*:*:*","matchCriteriaId":"8056C095-00C3-48A9-8F00-8EC3CA71AE48"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.8.8:*:*:*:*:*:*:*","matchCriteriaId":"72EA2B26-61BC-4513-9B11-7C21477F93BF"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.8.9:*:*:*:*:*:*:*","matchCriteriaId":"BEECBA41-4E06-4D26-AD66-1698C39CB4C6"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.9.0:*:*:*:*:*:*:*","matchCriteriaId":"10E73D14-2BBB-4E6E-970D-58C9D678CB07"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.9.1:*:*:*:*:*:*:*","matchCriteriaId":"58239BB8-F979-4902-807F-7037FA10D13D"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.9.2:*:*:*:*:*:*:*","matchCriteriaId":"D494532E-87C1-435A-B41C-C446EA100FFF"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.9.3:*:*:*:*:*:*:*","matchCriteriaId":"2AF3AD10-C818-4510-AAB3-E760D48FDC2E"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.9.4:*:*:*:*:*:*:*","matchCriteriaId":"3EB3A011-194C-4F0C-8DA2-48C592C9369A"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.9.5:*:*:*:*:*:*:*","matchCriteriaId":"7B29F059-2213-4D01-A704-95A5620AE1DA"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.9.6:*:*:*:*:*:*:*","matchCriteriaId":"F5774F2C-A9D4-4E92-8832-A7CC2F25B682"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.9.7:*:*:*:*:*:*:*","matchCriteriaId":"CB2845B1-800A-4A87-A11E-94919CBA5655"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.9.8:*:*:*:*:*:*:*","matchCriteriaId":"4779C728-4B69-4B75-92A2-45E5D41FCC17"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:2.9.9:*:*:*:*:*:*:*","matchCriteriaId":"99BA0BEE-7C5F-47BD-AE02-68F69E52EA5C"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.0.0:*:*:*:*:*:*:*","matchCriteriaId":"7313AE31-C2AA-4A06-98BB-0AD3FAB7AAAF"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.0.1:*:*:*:*:*:*:*","matchCriteriaId":"C44A273A-4613-44DC-905B-8EEDC035799C"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.0.2:*:*:*:*:*:*:*","matchCriteriaId":"CDA1C380-B119-4FA8-B75B-272DF7791D8B"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.0.3:*:*:*:*:*:*:*","matchCriteriaId":"58D8B6CB-9968-4697-B87D-03DB7D150BEC"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.0.4:*:*:*:*:*:*:*","matchCriteriaId":"B6659AB2-3361-4E91-A55D-BE09DE94B579"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.0.5:*:*:*:*:*:*:*","matchCriteriaId":"6B4B557A-9F40-415C-9919-955B3E0D5253"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.0.6:*:*:*:*:*:*:*","matchCriteriaId":"1E48129D-B453-4048-BB18-AF52C97373F7"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.0.7:*:*:*:*:*:*:*","matchCriteriaId":"10DA1C5D-EF59-4633-B279-5B317306DA52"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.0.8:*:*:*:*:*:*:*","matchCriteriaId":"9DFA9532-4359-42ED-92D9-1C33CB138D6E"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.0.9:*:*:*:*:*:*:*","matchCriteriaId":"2A081055-55BB-4FED-87BA-117A23CB33C8"}]}]}],"references":[{"url":"http://advisories.mageia.org/MGASA-2015-0065.html","source":"security@ubuntu.com"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2014-April/131910.html","source":"security@ubuntu.com"},{"url":"http://lists.opensuse.org/opensuse-updates/2014-05/msg00006.html","source":"security@ubuntu.com"},{"url":"http://secunia.com/advisories/57948","source":"security@ubuntu.com","tags":["Vendor Advisory"]},{"url":"http://www.mandriva.com/security/advisories?name=MDVSA-2015:131","source":"security@ubuntu.com"},{"url":"http://www.openwall.com/lists/oss-security/2014/04/14/5","source":"security@ubuntu.com"},{"url":"http://www.openwall.com/lists/oss-security/2014/04/15/1","source":"security@ubuntu.com"},{"url":"http://www.ubuntu.com/usn/USN-2171-1","source":"security@ubuntu.com"},{"url":"https://bugs.launchpad.net/ubuntu/+source/rsync/+bug/1307230","source":"security@ubuntu.com"},{"url":"https://bugzilla.samba.org/show_bug.cgi?id=10551","source":"security@ubuntu.com","tags":["Vendor Advisory"]},{"url":"https://git.samba.org/?p=rsync.git%3Ba=commit%3Bh=0dedfbce2c1b851684ba658861fe9d620636c56a","source":"security@ubuntu.com"},{"url":"http://advisories.mageia.org/MGASA-2015-0065.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2014-April/131910.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.opensuse.org/opensuse-updates/2014-05/msg00006.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/57948","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.mandriva.com/security/advisories?name=MDVSA-2015:131","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openwall.com/lists/oss-security/2014/04/14/5","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openwall.com/lists/oss-security/2014/04/15/1","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.ubuntu.com/usn/USN-2171-1","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://bugs.launchpad.net/ubuntu/+source/rsync/+bug/1307230","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://bugzilla.samba.org/show_bug.cgi?id=10551","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://git.samba.org/?p=rsync.git%3Ba=commit%3Bh=0dedfbce2c1b851684ba658861fe9d620636c56a","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2014-2927","sourceIdentifier":"cret@cert.org","published":"2014-10-15T14:55:06.743","lastModified":"2026-05-06T22:30:45.220","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The rsync daemon in F5 BIG-IP 11.6 before 11.6.0, 11.5.1 before HF3, 11.5.0 before HF4, 11.4.1 before HF4, 11.4.0 before HF7, 11.3.0 before HF9, and 11.2.1 before HF11 and Enterprise Manager 3.x before 3.1.1 HF2, when configured in failover mode, does not require authentication, which allows remote attackers to read or write to arbitrary files via a cmi request to the ConfigSync IP address."},{"lang":"es","value":"El demonio rsync en F5 BIG-IP 11.6 anterior a 11.6.0, 11.5.1 anterior a HF3, 11.5.0 anterior a HF4, 11.4.1 anterior a HF4, 11.4.0 anterior a HF7, 11.3.0 anterior a HF9, y 11.2.1 anterior a HF11 y Enterprise Manager 3.x anterior a 3.1.1 HF2, cuando se configura por error en modo de conmutador, no requiere autenticación, lo que permite a atacantes remotos escribir ficheros arbitrarios a través de peticiones cmi a la dirección IP del ConfigSync."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:C/I:C/A:C","baseScore":9.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.6,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-287"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:f5:arx:6.0.0:*:*:*:*:*:*:*","matchCriteriaId":"682F6942-167C-4805-BFC2-53445441A464"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:arx:6.1.0:*:*:*:*:*:*:*","matchCriteriaId":"E94644BE-6825-4DC4-998C-51AF6214E2AB"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:arx:6.1.1:*:*:*:*:*:*:*","matchCriteriaId":"510BACF3-6F1B-4805-A095-FCCEF56E7313"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:arx:6.2.0:*:*:*:*:*:*:*","matchCriteriaId":"B4A9FC9C-50C0-4E7D-A083-D15DEDD11847"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:arx:6.3.0:*:*:*:*:*:*:*","matchCriteriaId":"59FF7235-8946-4EA2-90FC-E460151A9B7F"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:arx:6.4.0:*:*:*:*:*:*:*","matchCriteriaId":"0C8DAD24-29EB-4A8B-9D19-7955D80FE4C5"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_access_policy_manager:10.1.0:*:*:*:*:*:*:*","matchCriteriaId":"F5BE38A0-CD2F-4C18-9EE3-D56A23BDB73A"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_access_policy_manager:10.2.0:*:*:*:*:*:*:*","matchCriteriaId":"476D58C4-7699-45AC-B987-B42B5488240B"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_access_policy_manager:10.2.1:*:*:*:*:*:*:*","matchCriteriaId":"30A1197A-7196-49AA-B368-5539180B8B93"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_access_policy_manager:10.2.2:*:*:*:*:*:*:*","matchCriteriaId":"E3F73DC1-9174-4842-B772-D277D293214A"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_access_policy_manager:10.2.3:*:*:*:*:*:*:*","matchCriteriaId":"B2BEA4E9-125B-47D7-99D0-DE469839622F"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_access_policy_manager:10.2.4:*:*:*:*:*:*:*","matchCriteriaId":"B1FB07A3-8D07-44F6-B827-B22D3799A707"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_access_policy_manager:11.0.0:*:*:*:*:*:*:*","matchCriteriaId":"DD575B3E-FBA9-443A-9B52-49766DBE40C4"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_access_policy_manager:11.1.0:*:*:*:*:*:*:*","matchCriteriaId":"F8F3BF3A-DC42-45F4-99C0-DF71DB1A9E44"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_access_policy_manager:11.2.0:*:*:*:*:*:*:*","matchCriteriaId":"002333F5-2864-434F-AC94-9C644098F95C"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_access_policy_manager:11.2.1:*:*:*:*:*:*:*","matchCriteriaId":"FB630A86-FB84-4199-9E4D-38EB620806CB"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_access_policy_manager:11.3.0:*:*:*:*:*:*:*","matchCriteriaId":"ABF47456-CCA0-4817-9AEF-631DC152174E"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_access_policy_manager:11.4.0:*:*:*:*:*:*:*","matchCriteriaId":"FB5F9107-549C-40EF-B355-C7E93A979CDD"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_access_policy_manager:11.4.1:*:*:*:*:*:*:*","matchCriteriaId":"B1A1C200-30B2-4B38-BC74-D11E54530A96"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_access_policy_manager:11.5.0:*:*:*:*:*:*:*","matchCriteriaId":"1C0312FC-8178-46DE-B4EE-00F2895073BA"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_access_policy_manager:11.5.1:*:*:*:*:*:*:*","matchCriteriaId":"BC6C5628-14FF-4D75-B62E-D4B2707C1E3D"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_access_policy_manager:11.6.0:*:*:*:*:*:*:*","matchCriteriaId":"CFA77C6B-72DB-4D57-87CF-11F2C7EDB828"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.3.0:*:*:*:*:*:*:*","matchCriteriaId":"7507BDFF-5B52-4A06-9F8C-2B6F3958162A"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.4.0:*:*:*:*:*:*:*","matchCriteriaId":"6E0141FA-44E9-460E-B175-29A7FA251301"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.4.1:*:*:*:*:*:*:*","matchCriteriaId":"8DD27EF7-3329-4009-959F-D2E4D5935E57"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.5.0:*:*:*:*:*:*:*","matchCriteriaId":"3755740D-F1DC-4910-ADDD-9D491515201C"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.5.1:*:*:*:*:*:*:*","matchCriteriaId":"EA244A7D-F65D-4114-81C8-CE811959EA10"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:11.6.0:*:*:*:*:*:*:*","matchCriteriaId":"B276E4DF-69FC-4158-B93A-781A45605034"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_analytics:11.0.0:*:*:*:*:*:*:*","matchCriteriaId":"8FA5C323-7247-42B5-AF3E-F7E8A18932CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_analytics:11.1.0:*:*:*:*:*:*:*","matchCriteriaId":"FF199950-9564-4CF2-BC74-F9E1C28AC377"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_analytics:11.2.0:*:*:*:*:*:*:*","matchCriteriaId":"A613D29A-9C7F-49A5-98E4-8477A1FF7C9E"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_analytics:11.2.1:*:*:*:*:*:*:*","matchCriteriaId":"867B2CA9-DAE5-4070-B8E6-F624C59F5054"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_analytics:11.3.0:*:*:*:*:*:*:*","matchCriteriaId":"52CD200C-1D14-471F-93C1-027CC676C26C"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_analytics:11.4.0:*:*:*:*:*:*:*","matchCriteriaId":"4D1850CE-D20D-4677-8CF2-1DB3A4EB33F2"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_analytics:11.4.1:*:*:*:*:*:*:*","matchCriteriaId":"0A70B1E2-0B3D-4DE9-8ED9-777F73D0B750"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_analytics:11.5.0:*:*:*:*:*:*:*","matchCriteriaId":"A7D226F1-6513-4233-BE20-58D7AB24978F"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_analytics:11.5.1:*:*:*:*:*:*:*","matchCriteriaId":"B33B2082-E040-4799-A260-BA687ED8614E"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_analytics:11.6.0:*:*:*:*:*:*:*","matchCriteriaId":"B70D2BD5-8E3F-4B57-84EF-3AF40F6378F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_acceleration_manager:11.4.0:*:*:*:*:*:*:*","matchCriteriaId":"974C5213-99F7-4E8A-AC6A-8759697F19C4"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_acceleration_manager:11.4.1:*:*:*:*:*:*:*","matchCriteriaId":"E288D50B-7EFA-4FC8-938B-EE3765FFA24D"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_acceleration_manager:11.5.0:*:*:*:*:*:*:*","matchCriteriaId":"0E3D8A24-0B8D-432B-8F06-D0E1642E7C1C"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_acceleration_manager:11.5.1:*:*:*:*:*:*:*","matchCriteriaId":"A4489382-0668-4CFB-BA89-D54762937CEE"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_acceleration_manager:11.6.0:*:*:*:*:*:*:*","matchCriteriaId":"E5B40837-EC2B-41FB-ACC3-806054EAF28C"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_security_manager:10.0.0:*:*:*:*:*:*:*","matchCriteriaId":"65D810F8-6062-4901-9832-226F80287C8F"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_security_manager:10.0.1:*:*:*:*:*:*:*","matchCriteriaId":"EBC2A0DC-D931-4450-8D0F-3223A8EDCED9"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_security_manager:10.1.0:*:*:*:*:*:*:*","matchCriteriaId":"E6C19BDD-1286-48C7-8E7D-66C100D02319"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_security_manager:10.2.0:*:*:*:*:*:*:*","matchCriteriaId":"4B4653A4-833F-4381-86E9-452F19A53868"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_security_manager:10.2.1:*:*:*:*:*:*:*","matchCriteriaId":"FFCB7C80-DDA6-421C-92E8-E6E56E414E81"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_security_manager:10.2.2:*:*:*:*:*:*:*","matchCriteriaId":"494085EA-7445-4592-8795-DCC035BDDC52"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_security_manager:10.2.3:*:*:*:*:*:*:*","matchCriteriaId":"EAD4E5E9-5289-4E84-A922-97364D8EB6EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_security_manager:10.2.4:*:*:*:*:*:*:*","matchCriteriaId":"479AFDC6-CE0E-4AAC-8DA9-26ADCD96E8DA"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_security_manager:11.0.0:*:*:*:*:*:*:*","matchCriteriaId":"094BD2B6-E269-4647-A77C-B584805B6203"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_security_manager:11.1.0:*:*:*:*:*:*:*","matchCriteriaId":"45C31572-6C40-4621-AB57-6768DE0D59A3"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_security_manager:11.2.0:*:*:*:*:*:*:*","matchCriteriaId":"4617DC7B-07BA-4805-9789-CFDBA8535214"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_security_manager:11.2.1:*:*:*:*:*:*:*","matchCriteriaId":"A635FEC4-4F52-4971-A67D-47E68108E4F4"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_security_manager:11.3.0:*:*:*:*:*:*:*","matchCriteriaId":"EC69B41E-C22D-48D2-8609-60C018F1F48D"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_security_manager:11.4.0:*:*:*:*:*:*:*","matchCriteriaId":"270EEBF6-46FA-48FC-BEC9-9C0838A86BB4"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_security_manager:11.4.1:*:*:*:*:*:*:*","matchCriteriaId":"93310708-E1FE-445A-BB1F-7D1F553AEC65"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_security_manager:11.5.0:*:*:*:*:*:*:*","matchCriteriaId":"1AD2C1D2-103E-4B0F-84AA-999F01E695F0"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_security_manager:11.5.1:*:*:*:*:*:*:*","matchCriteriaId":"855E91A4-0A0C-4E5C-8019-FB513A793803"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_application_security_manager:11.6.0:*:*:*:*:*:*:*","matchCriteriaId":"475F0EF8-42CB-4099-9C4A-390F946C4924"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_edge_gateway:10.1.0:*:*:*:*:*:*:*","matchCriteriaId":"D982EE29-D298-4D39-897A-580D867CDE50"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_edge_gateway:10.2.0:*:*:*:*:*:*:*","matchCriteriaId":"D477F539-2E79-47BB-A8CF-F3A73AA72A27"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_edge_gateway:10.2.1:*:*:*:*:*:*:*","matchCriteriaId":"C70B0F91-B269-4753-92E5-69F49CCB498D"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_edge_gateway:10.2.2:*:*:*:*:*:*:*","matchCriteriaId":"44847A70-9301-4C53-93AF-8888CF074F6C"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_edge_gateway:10.2.3:*:*:*:*:*:*:*","matchCriteriaId":"57C59A21-CFC9-41CE-AEC3-FD9E8B02A5FD"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_edge_gateway:10.2.4:*:*:*:*:*:*:*","matchCriteriaId":"FE109CFC-59FD-4859-87EF-5FDD1BD94260"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_edge_gateway:11.0.0:*:*:*:*:*:*:*","matchCriteriaId":"53531CA7-5E47-4C46-BDA5-3B4710085078"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_edge_gateway:11.1.0:*:*:*:*:*:*:*","matchCriteriaId":"5A085285-329B-4EF0-ABFB-238655E9E82D"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_edge_gateway:11.2.0:*:*:*:*:*:*:*","matchCriteriaId":"1591F627-3C86-4904-9236-6936D533ED75"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_edge_gateway:11.2.1:*:*:*:*:*:*:*","matchCriteriaId":"3136A8D1-3D0D-46B3-9A3A-737074864F1B"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_edge_gateway:11.3.0:*:*:*:*:*:*:*","matchCriteriaId":"96673865-3D37-4562-831E-3ACE9DFB471E"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_global_traffic_manager:10.0.0:*:*:*:*:*:*:*","matchCriteriaId":"16ACB60E-B9E9-402A-BE42-DF5C892C2257"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_global_traffic_manager:10.0.1:*:*:*:*:*:*:*","matchCriteriaId":"5EE87BAD-382E-4FA7-BCF9-88EFA36DAB3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_global_traffic_manager:10.1.0:*:*:*:*:*:*:*","matchCriteriaId":"E6363B0D-AC1F-4AF5-BC02-19F77A85F3AC"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_global_traffic_manager:10.2.0:*:*:*:*:*:*:*","matchCriteriaId":"80B80111-6F28-4E7F-B9DE-27825866A138"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_global_traffic_manager:10.2.1:*:*:*:*:*:*:*","matchCriteriaId":"3A8D0587-ED89-4CDB-960D-37FBD522B146"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_global_traffic_manager:10.2.2:*:*:*:*:*:*:*","matchCriteriaId":"B77088CC-8C8C-4D6E-9770-634A5BF62A3D"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_global_traffic_manager:10.2.3:*:*:*:*:*:*:*","matchCriteriaId":"5D19442F-065D-4CBE-87EA-697CECD6A47C"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_global_traffic_manager:10.2.4:*:*:*:*:*:*:*","matchCriteriaId":"5445A56C-8D69-484B-8EC4-1F45B4490CC2"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.0.0:*:*:*:*:*:*:*","matchCriteriaId":"9AA7DCB7-D01E-492A-A810-01B15F03A783"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.1.0:*:*:*:*:*:*:*","matchCriteriaId":"E7F8D9A5-0C91-4458-8554-13947FD8B116"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.2.0:*:*:*:*:*:*:*","matchCriteriaId":"B171AA24-6500-43D8-9167-BA9BA57682E5"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.2.1:*:*:*:*:*:*:*","matchCriteriaId":"84452450-77FA-4708-9C86-5464D541C8ED"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.3.0:*:*:*:*:*:*:*","matchCriteriaId":"A49B1D82-3EC2-4E20-8FF5-58248905E964"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.4.0:*:*:*:*:*:*:*","matchCriteriaId":"7E4CC3E0-F9B8-433F-A2B0-2306144F9B6A"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.4.1:*:*:*:*:*:*:*","matchCriteriaId":"B8993275-E17E-4A69-8D95-A8229E0E88D6"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.5.0:*:*:*:*:*:*:*","matchCriteriaId":"0594DBC5-8470-416C-A5EA-E04F5AB2C799"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.5.1:*:*:*:*:*:*:*","matchCriteriaId":"B50BF19F-71B4-47C0-A96E-6EB90FCC6AE7"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_global_traffic_manager:11.6.0:*:*:*:*:*:*:*","matchCriteriaId":"D7D7863D-B064-4D7A-A66B-C3D3523425FD"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_link_controller:10.0.0:*:*:*:*:*:*:*","matchCriteriaId":"71578014-E3CD-40A9-8AE4-537C970B4B2F"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_link_controller:10.0.1:*:*:*:*:*:*:*","matchCriteriaId":"8A4D2DA3-1EF3-428A-ACC0-1C438D6F8648"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_link_controller:10.1.0:*:*:*:*:*:*:*","matchCriteriaId":"4758B4CB-5CD9-4505-8E91-E5E849937A63"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_link_controller:10.2.0:*:*:*:*:*:*:*","matchCriteriaId":"C801C53F-9ECC-42B9-A119-5046706CA621"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_link_controller:10.2.1:*:*:*:*:*:*:*","matchCriteriaId":"02A544E4-B9BB-4735-8239-4FC57473BB1E"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_link_controller:10.2.2:*:*:*:*:*:*:*","matchCriteriaId":"91E5BF8D-7391-49E3-A17A-26A1F138A3C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_link_controller:10.2.3:*:*:*:*:*:*:*","matchCriteriaId":"A3C33FD2-8473-485C-9726-5673B49A031D"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_link_controller:10.2.4:*:*:*:*:*:*:*","matchCriteriaId":"3FA77AD2-557E-41E5-8BE5-F4B4A1AB8E13"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_link_controller:11.0.0:*:*:*:*:*:*:*","matchCriteriaId":"4C2FFC93-7053-441C-AD96-ED57F97E9A70"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_link_controller:11.1.0:*:*:*:*:*:*:*","matchCriteriaId":"792625FF-276B-4972-8915-4571C9E26BF5"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_link_controller:11.2.0:*:*:*:*:*:*:*","matchCriteriaId":"EE20D0B7-E96B-448E-B80D-0D596248B410"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_link_controller:11.2.1:*:*:*:*:*:*:*","matchCriteriaId":"2DD53088-3BD4-4AF9-8934-4905231A75E8"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_link_controller:11.3.0:*:*:*:*:*:*:*","matchCriteriaId":"C4CB61D3-DF59-4EE0-A0F0-5899850496B9"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_link_controller:11.4.0:*:*:*:*:*:*:*","matchCriteriaId":"FF646EF0-56C8-492E-A78D-B00ECAA8D851"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_link_controller:11.4.1:*:*:*:*:*:*:*","matchCriteriaId":"0D42B922-A5F7-41FC-A361-BA0E065B5B00"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_link_controller:11.5.0:*:*:*:*:*:*:*","matchCriteriaId":"13E6D2CA-CC4F-4317-A842-4DF0693B0CB6"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_link_controller:11.5.1:*:*:*:*:*:*:*","matchCriteriaId":"AB017D7A-3290-4EF5-9647-B488771A5F32"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_link_controller:11.6.0:*:*:*:*:*:*:*","matchCriteriaId":"5CDEC701-DAB3-4D92-AA67-B886E6693E46"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_local_traffic_manager:10.0.0:*:*:*:*:*:*:*","matchCriteriaId":"8E1C4384-1728-4A71-8634-DCE3F2AEB8F2"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_local_traffic_manager:10.0.1:*:*:*:*:*:*:*","matchCriteriaId":"1AC8AA37-9962-4CF6-99E5-A6F94582B107"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_local_traffic_manager:10.1.0:*:*:*:*:*:*:*","matchCriteriaId":"AF1FD1C1-6980-4E9F-8DEF-D9E552510481"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_local_traffic_manager:10.2.0:*:*:*:*:*:*:*","matchCriteriaId":"A9F443F1-C43F-42AD-98E4-AE11C72F363E"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_local_traffic_manager:10.2.1:*:*:*:*:*:*:*","matchCriteriaId":"1AF61656-A266-4A2D-A001-54339716A4A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_local_traffic_manager:10.2.2:*:*:*:*:*:*:*","matchCriteriaId":"3FC92F47-75EB-487A-B4A2-2B0B4C78B10D"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_local_traffic_manager:10.2.3:*:*:*:*:*:*:*","matchCriteriaId":"C16CD0C3-13CC-46D2-8E33-A98B3ACC1992"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_local_traffic_manager:10.2.4:*:*:*:*:*:*:*","matchCriteriaId":"FE056B1B-5037-453C-B845-06A507452821"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.0.0:*:*:*:*:*:*:*","matchCriteriaId":"C72FF118-E7A5-42DE-A9A0-703E71615045"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.1.0:*:*:*:*:*:*:*","matchCriteriaId":"45A53EC8-8E16-42DC-9FD8-58493C5D1EC5"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.2.0:*:*:*:*:*:*:*","matchCriteriaId":"DDB299B4-5893-4D91-8E5B-09BDFDB86FEF"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.2.1:*:*:*:*:*:*:*","matchCriteriaId":"F9EA336A-8055-4DA8-8F79-07C4ADE83E32"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.3.0:*:*:*:*:*:*:*","matchCriteriaId":"624EFAEB-15C2-422F-BAD1-D0BC37878349"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.4.0:*:*:*:*:*:*:*","matchCriteriaId":"76C1525D-46DE-4362-BBAD-095BBF718990"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.4.1:*:*:*:*:*:*:*","matchCriteriaId":"259C05BB-6349-4005-9372-21623DC5002D"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.5.0:*:*:*:*:*:*:*","matchCriteriaId":"E5D27D4A-BD5C-4FA9-AA72-F7956298DE06"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.5.1:*:*:*:*:*:*:*","matchCriteriaId":"12F86EB5-D581-4103-A802-44D968BA8D55"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_local_traffic_manager:11.6.0:*:*:*:*:*:*:*","matchCriteriaId":"2FF5A5F6-4BA3-4276-8679-B5560EACF2E0"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.3.0:*:*:*:*:*:*:*","matchCriteriaId":"3CA52816-C4B7-4B1E-A950-EE9B571CB06B"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.4.0:*:*:*:*:*:*:*","matchCriteriaId":"F2AA5127-5314-4026-905D-937B7B62473F"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.4.1:*:*:*:*:*:*:*","matchCriteriaId":"09E42DAA-700D-487C-9238-F7F3D75A8C1A"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.5.0:*:*:*:*:*:*:*","matchCriteriaId":"1B6EA0C0-9C26-4A87-98F1-5B317D606ECB"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.5.1:*:*:*:*:*:*:*","matchCriteriaId":"4D379372-A226-4230-B1F3-04C696518BD8"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:11.6.0:*:*:*:*:*:*:*","matchCriteriaId":"CB8D3B87-B8F5-490A-B1D9-04F2EE93EEA3"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_protocol_security_module:10.0.0:*:*:*:*:*:*:*","matchCriteriaId":"2691943C-1FD1-43EE-B070-E35710E426ED"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_protocol_security_module:10.0.1:*:*:*:*:*:*:*","matchCriteriaId":"5B10D9D9-BC40-4889-9196-C8EA7C571160"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_protocol_security_module:10.1.0:*:*:*:*:*:*:*","matchCriteriaId":"288EB1AC-9DE3-4FE2-AE4D-006A49199877"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_protocol_security_module:10.2.0:*:*:*:*:*:*:*","matchCriteriaId":"1405D7AE-D14C-40F6-9144-EF2F18A6EBC1"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_protocol_security_module:10.2.1:*:*:*:*:*:*:*","matchCriteriaId":"E807E667-0597-4F14-902A-B922C94F572C"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_protocol_security_module:10.2.2:*:*:*:*:*:*:*","matchCriteriaId":"02614B4F-0E90-456E-B7ED-387A3007FB45"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_protocol_security_module:10.2.3:*:*:*:*:*:*:*","matchCriteriaId":"F482624A-BE79-4A87-B676-DBB57369D31C"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_protocol_security_module:10.2.4:*:*:*:*:*:*:*","matchCriteriaId":"77888947-80CB-46B3-910E-DCCFDF6B3D47"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_protocol_security_module:11.0.0:*:*:*:*:*:*:*","matchCriteriaId":"3251DB7F-0436-48D5-AF7B-F812237DB926"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_protocol_security_module:11.1.0:*:*:*:*:*:*:*","matchCriteriaId":"8600FF27-4407-4755-A1E3-5648D9ACCB1C"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_protocol_security_module:11.2.0:*:*:*:*:*:*:*","matchCriteriaId":"D3A84AF1-A18E-4AFD-B85E-49CE46A548D8"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_protocol_security_module:11.2.1:*:*:*:*:*:*:*","matchCriteriaId":"BA54B88F-4A16-4F40-8A3B-B107F0CA2334"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_protocol_security_module:11.3.0:*:*:*:*:*:*:*","matchCriteriaId":"17C28542-51A4-4464-ADF9-C6376F829F4A"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_protocol_security_module:11.4.0:*:*:*:*:*:*:*","matchCriteriaId":"584853F9-644F-40B2-A28F-1CE9B51F84F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_protocol_security_module:11.4.1:*:*:*:*:*:*:*","matchCriteriaId":"DFE665CF-A633-474E-9519-D20E3D3958CF"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_wan_optimization_manager:10.0.0:*:*:*:*:*:*:*","matchCriteriaId":"FB441DC5-813E-4E59-87B8-15731291B135"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_wan_optimization_manager:10.0.1:*:*:*:*:*:*:*","matchCriteriaId":"F89F4A12-710E-4F7A-9A8D-D8B91889A279"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_wan_optimization_manager:10.1.0:*:*:*:*:*:*:*","matchCriteriaId":"126AD92E-6816-42C0-8801-A81B59C11A56"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_wan_optimization_manager:10.2.0:*:*:*:*:*:*:*","matchCriteriaId":"890F363A-FC4F-4F52-BBFF-E959F65043A6"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_wan_optimization_manager:10.2.1:*:*:*:*:*:*:*","matchCriteriaId":"4CE899AF-EA61-4B9D-9523-BF436614CE21"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_wan_optimization_manager:10.2.2:*:*:*:*:*:*:*","matchCriteriaId":"E5BA7D7A-02C8-411A-AFBF-D523E57A66C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_wan_optimization_manager:10.2.3:*:*:*:*:*:*:*","matchCriteriaId":"0018A0C0-AFB3-4654-9504-78A2742C6EE0"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_wan_optimization_manager:10.2.4:*:*:*:*:*:*:*","matchCriteriaId":"3A1ACF2F-3C0E-42E1-A1D2-6D682B2E32C5"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_wan_optimization_manager:11.0.0:*:*:*:*:*:*:*","matchCriteriaId":"C14D0DD3-E6A9-43C8-85D7-6DBB16E30DD5"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_wan_optimization_manager:11.1.0:*:*:*:*:*:*:*","matchCriteriaId":"2B59396A-EAFF-41D4-874F-4CA91D901807"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_wan_optimization_manager:11.2.0:*:*:*:*:*:*:*","matchCriteriaId":"4C9C14C5-B23C-4CE3-8FF0-52741CBB602E"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_wan_optimization_manager:11.2.1:*:*:*:*:*:*:*","matchCriteriaId":"7FBA20ED-08F5-4C35-991A-0DBC6BEAECC7"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_wan_optimization_manager:11.3.0:*:*:*:*:*:*:*","matchCriteriaId":"8D94751C-A340-4DE7-821A-5143FA0011E4"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_webaccelerator:10.0.0:*:*:*:*:*:*:*","matchCriteriaId":"E951823B-9791-48C7-A804-18FEBEC31279"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_webaccelerator:10.0.1:*:*:*:*:*:*:*","matchCriteriaId":"2E3427DB-2918-4934-A3C1-FA5F1632364F"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_webaccelerator:10.1.0:*:*:*:*:*:*:*","matchCriteriaId":"78F1A903-4AF5-4FE6-92B0-9F0B64723804"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_webaccelerator:10.2.0:*:*:*:*:*:*:*","matchCriteriaId":"383966C0-2FDD-4755-BA16-EE73D4577DFD"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_webaccelerator:10.2.1:*:*:*:*:*:*:*","matchCriteriaId":"2AD7519A-2F81-42CB-A18A-0BA9DB0F90D0"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_webaccelerator:10.2.2:*:*:*:*:*:*:*","matchCriteriaId":"F16F5CB9-3A92-4A96-BC24-993FCF3DC13F"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_webaccelerator:10.2.3:*:*:*:*:*:*:*","matchCriteriaId":"2748B48B-3E2A-4837-981E-5049CF627CBC"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_webaccelerator:10.2.4:*:*:*:*:*:*:*","matchCriteriaId":"3A2E767A-65BC-420B-9BA3-12B51575FB37"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_webaccelerator:11.0.0:*:*:*:*:*:*:*","matchCriteriaId":"E5E8E654-DA20-45F9-A25E-44D1E31F64C6"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_webaccelerator:11.1.0:*:*:*:*:*:*:*","matchCriteriaId":"3C8FCFDA-703B-42DC-91FF-00066E88E49D"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_webaccelerator:11.2.0:*:*:*:*:*:*:*","matchCriteriaId":"3CA49611-A8E4-454E-98AD-B64C0202838F"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_webaccelerator:11.2.1:*:*:*:*:*:*:*","matchCriteriaId":"FF7FCC81-2F1D-4EF5-956B-085FB7FEFAE7"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-ip_webaccelerator:11.3.0:*:*:*:*:*:*:*","matchCriteriaId":"200A9CE9-E56D-4EFA-AC8A-954F945DDDBB"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-iq_cloud:4.0.0:*:*:*:*:*:*:*","matchCriteriaId":"D88F8F3B-DD8B-4BB3-BB68-C43583318400"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-iq_cloud:4.1.0:*:*:*:*:*:*:*","matchCriteriaId":"F677AF16-146D-41A5-ABF3-56DB9C0D6CA6"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-iq_cloud:4.2.0:*:*:*:*:*:*:*","matchCriteriaId":"CE13DA9F-8460-430E-B939-BF17A7D37A9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-iq_cloud:4.3.0:*:*:*:*:*:*:*","matchCriteriaId":"70A04EB1-0C2C-4FC0-9E4D-05AFE65503D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-iq_device:4.2.0:*:*:*:*:*:*:*","matchCriteriaId":"EBA4FC82-F8FB-4F11-94DA-12D280A18E3D"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-iq_device:4.3.0:*:*:*:*:*:*:*","matchCriteriaId":"CB5D327F-4233-45CE-A557-F7BA717AF057"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-iq_security:4.0.0:*:*:*:*:*:*:*","matchCriteriaId":"0303BEA3-02EB-4F7C-96C5-29E231832CEA"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-iq_security:4.1.0:*:*:*:*:*:*:*","matchCriteriaId":"27CAD4CD-9228-4DE5-A333-2862AC18F24B"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-iq_security:4.2.0:*:*:*:*:*:*:*","matchCriteriaId":"283BF2C8-BED6-4FB5-91C0-E53F338F3AF2"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:big-iq_security:4.3.0:*:*:*:*:*:*:*","matchCriteriaId":"D98BEE39-FD68-49FC-A2A2-8926FFA4BF51"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:enterprise_manager:2.1.0:*:*:*:*:*:*:*","matchCriteriaId":"9AE053D4-B202-4BDC-93E6-AA84ADC9B24A"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:enterprise_manager:2.2.0:*:*:*:*:*:*:*","matchCriteriaId":"6282BAFA-5F16-40FD-A4C0-9CC289CEEA40"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:enterprise_manager:2.3.0:*:*:*:*:*:*:*","matchCriteriaId":"1A2BEF40-2392-45F3-B5D0-1FB29646C12A"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:enterprise_manager:3.0.0:*:*:*:*:*:*:*","matchCriteriaId":"125C8A19-4F51-42DD-BA11-F299721EFBB5"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:enterprise_manager:3.1.0:*:*:*:*:*:*:*","matchCriteriaId":"4C580F19-AF18-49EE-89FF-8C4F5C88314D"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:enterprise_manager:3.1.1:*:*:*:*:*:*:*","matchCriteriaId":"D5F5FEE7-059A-4A9B-BCCD-18F0AA435040"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:firepass:6.0.0:*:*:*:*:*:*:*","matchCriteriaId":"01DDFFC4-688B-45FB-B548-A9654BACFA05"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:firepass:6.0.1:*:*:*:*:*:*:*","matchCriteriaId":"DC616BB8-F668-483F-A75B-B4244921A23D"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:firepass:6.0.2:*:*:*:*:*:*:*","matchCriteriaId":"073353D3-AF25-421D-9F97-8FB9C5109CCC"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:firepass:6.0.3:*:*:*:*:*:*:*","matchCriteriaId":"20EF47F4-0CD0-43DD-93E7-EA08CDF90B7F"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:firepass:6.1.0:*:*:*:*:*:*:*","matchCriteriaId":"47741322-99CD-4B9E-BD6E-A2934572E60B"},{"vulnerable":true,"criteria":"cpe:2.3:a:f5:firepass:7.0.0:*:*:*:*:*:*:*","matchCriteriaId":"442D343A-973B-4C33-B99B-1EA2B7670DE5"}]}]}],"references":[{"url":"http://www.exploit-db.com/exploits/34465","source":"cret@cert.org","tags":["Exploit"]},{"url":"http://www.security-assessment.com/files/documents/advisory/F5_Unauthenticated_rsync_access_to_Remote_Root_Code_Execution.pdf","source":"cret@cert.org","tags":["Exploit"]},{"url":"https://support.f5.com/kb/en-us/solutions/public/15000/200/sol15236.html","source":"cret@cert.org","tags":["Vendor Advisory"]},{"url":"http://www.exploit-db.com/exploits/34465","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit"]},{"url":"http://www.security-assessment.com/files/documents/advisory/F5_Unauthenticated_rsync_access_to_Remote_Root_Code_Execution.pdf","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit"]},{"url":"https://support.f5.com/kb/en-us/solutions/public/15000/200/sol15236.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2014-9512","sourceIdentifier":"cve@mitre.org","published":"2015-02-12T16:59:01.457","lastModified":"2026-05-06T22:30:45.220","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"rsync 3.1.1 allows remote attackers to write to arbitrary files via a symlink attack on a file in the synchronization path."},{"lang":"es","value":"rsync 3.1.1 permite a atacantes remotos escribir a ficheros arbitrarios a través de un ataque de enlace simbólico sobre un fichero en la ruta de sincronización."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:P/A:P","baseScore":6.4,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":4.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-59"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.1.1:*:*:*:*:*:*:*","matchCriteriaId":"C8F4F331-B7EF-4D28-A1AE-24B331DF2E68"},{"vulnerable":true,"criteria":"cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*","matchCriteriaId":"A10BC294-9196-425F-9FB0-B1625465B47F"},{"vulnerable":true,"criteria":"cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*","matchCriteriaId":"03117DF1-3BEC-4B8D-AD63-DBBDB2126081"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:oracle:solaris:10.0:*:*:*:*:*:*:*","matchCriteriaId":"FC633250-EB1E-4484-9BCB-977C8F9EB0B2"},{"vulnerable":true,"criteria":"cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*","matchCriteriaId":"79A602C5-61FE-47BA-9786-F045B6C6DBA8"}]}]}],"references":[{"url":"http://lists.opensuse.org/opensuse-updates/2015-02/msg00041.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-updates/2016-06/msg00095.html","source":"cve@mitre.org"},{"url":"http://lists.opensuse.org/opensuse-updates/2016-06/msg00112.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/76093","source":"cve@mitre.org"},{"url":"http://www.securitytracker.com/id/1034786","source":"cve@mitre.org"},{"url":"http://www.ubuntu.com/usn/USN-2879-1","source":"cve@mitre.org"},{"url":"http://xteam.baidu.com/?p=169","source":"cve@mitre.org","tags":["Exploit"]},{"url":"https://bugzilla.samba.org/show_bug.cgi?id=10977","source":"cve@mitre.org","tags":["Exploit","Issue Tracking"]},{"url":"https://security.gentoo.org/glsa/201605-04","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://support.apple.com/kb/HT211168","source":"cve@mitre.org"},{"url":"https://support.apple.com/kb/HT211170","source":"cve@mitre.org"},{"url":"https://support.apple.com/kb/HT211171","source":"cve@mitre.org"},{"url":"https://support.apple.com/kb/HT211175","source":"cve@mitre.org"},{"url":"https://support.apple.com/kb/HT211289","source":"cve@mitre.org"},{"url":"http://lists.opensuse.org/opensuse-updates/2015-02/msg00041.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-updates/2016-06/msg00095.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.opensuse.org/opensuse-updates/2016-06/msg00112.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/76093","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securitytracker.com/id/1034786","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.ubuntu.com/usn/USN-2879-1","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://xteam.baidu.com/?p=169","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit"]},{"url":"https://bugzilla.samba.org/show_bug.cgi?id=10977","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Issue Tracking"]},{"url":"https://security.gentoo.org/glsa/201605-04","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://support.apple.com/kb/HT211168","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://support.apple.com/kb/HT211170","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://support.apple.com/kb/HT211171","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://support.apple.com/kb/HT211175","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://support.apple.com/kb/HT211289","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2015-0932","sourceIdentifier":"cret@cert.org","published":"2015-04-05T01:59:01.163","lastModified":"2026-05-06T22:30:45.220","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The ANTlabs InnGate firmware on IG 3100, IG 3101, InnGate 3.00 E, InnGate 3.01 E, InnGate 3.02 E, InnGate 3.10 E, InnGate 3.01 G, and InnGate 3.10 G devices does not require authentication for rsync sessions, which allows remote attackers to read or write to arbitrary files via TCP traffic on port 873."},{"lang":"es","value":"El firmware ANTlabs InnGate en los dispositivos IG 3100, IG 3101, InnGate 3.00 E, InnGate 3.01 E, InnGate 3.02 E, InnGate 3.10 E, InnGate 3.01 G, y InnGate 3.10 G no requiere autenticación para las sesiones rsync, lo que permite a atacantes remotos leer o escribir a ficheros arbitrarios a través de trafico TCP en el puerto 873."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:C/I:C/A:C","baseScore":10.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-264"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:antlabs:inngate_ig_3.00_e:*:*:*:*:*:*:*:*","matchCriteriaId":"C98B2BC1-7343-4B40-B881-FBD115788003"},{"vulnerable":true,"criteria":"cpe:2.3:h:antlabs:inngate_ig_3.01_e:*:*:*:*:*:*:*:*","matchCriteriaId":"D887F08E-E312-453E-BFC5-D1E2AEC38415"},{"vulnerable":true,"criteria":"cpe:2.3:h:antlabs:inngate_ig_3.02_e:*:*:*:*:*:*:*:*","matchCriteriaId":"C30EB6A8-7469-4734-BFC2-4A44BAABA38A"},{"vulnerable":true,"criteria":"cpe:2.3:h:antlabs:inngate_ig_3.10_e:*:*:*:*:*:*:*:*","matchCriteriaId":"25195541-04D9-4593-A572-C1F874479594"},{"vulnerable":true,"criteria":"cpe:2.3:h:antlabs:inngate_ig_3.10_g:*:*:*:*:*:*:*:*","matchCriteriaId":"5C957E44-295A-4415-ABA5-756162885BC1"},{"vulnerable":true,"criteria":"cpe:2.3:h:antlabs:inngate_ig_3100:*:*:*:*:*:*:*:*","matchCriteriaId":"B3860A74-8424-4CE4-B2CE-1FDDC59C0CF4"},{"vulnerable":true,"criteria":"cpe:2.3:h:antlabs:inngate_ig_3101:*:*:*:*:*:*:*:*","matchCriteriaId":"2449B53D-8ECF-4791-871F-9555025FFCD1"}]}]}],"references":[{"url":"http://blog.cylance.com/spear-team-cve-2015-0932","source":"cret@cert.org","tags":["Exploit"]},{"url":"http://www.antlabs.com/index.php?option=com_content&view=article&id=195:rsync-remote-file-system-access-vulnerability-cve-2015-0932&catid=54:advisories&Itemid=133","source":"cret@cert.org","tags":["Patch","Vendor Advisory"]},{"url":"http://www.kb.cert.org/vuls/id/930956","source":"cret@cert.org","tags":["Third Party Advisory","US Government Resource"]},{"url":"http://www.wired.com/2015/03/big-vulnerability-hotel-wi-fi-router-puts-guests-risk/","source":"cret@cert.org"},{"url":"http://blog.cylance.com/spear-team-cve-2015-0932","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit"]},{"url":"http://www.antlabs.com/index.php?option=com_content&view=article&id=195:rsync-remote-file-system-access-vulnerability-cve-2015-0932&catid=54:advisories&Itemid=133","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://www.kb.cert.org/vuls/id/930956","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]},{"url":"http://www.wired.com/2015/03/big-vulnerability-hotel-wi-fi-router-puts-guests-risk/","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2016-7560","sourceIdentifier":"cve@mitre.org","published":"2016-10-05T16:59:07.900","lastModified":"2026-05-06T22:30:45.220","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The rsyncd server in Fortinet FortiWLC 6.1-2-29 and earlier, 7.0-9-1, 7.0-10-0, 8.0-5-0, 8.1-2-0, and 8.2-4-0 has a hardcoded rsync account, which allows remote attackers to read or write to arbitrary files via unspecified vectors."},{"lang":"es","value":"El servidor rsyncd en Fortinet FortiWLC 6.1-2-29 y versiones anteriores, 7.0-9-1, 7.0-10-0, 8.0-5-0, 8.1-2-0 y 8.2-4-0 tiene una cuenta rsync embebida, lo que permite a atacantes remotos leer o escribir archivos arbitrarios a través de vectores no especificados."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:C/I:C/A:C","baseScore":10.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":10.0,"acInsufInfo":true,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-798"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:fortiwlc:*:*:*:*:*:*:*:*","versionEndIncluding":"6.1-2-29","matchCriteriaId":"66B34DBA-D142-48C5-81BB-341EFCBA3002"},{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:fortiwlc:7.0-9-1:*:*:*:*:*:*:*","matchCriteriaId":"FD17F5C3-C9C3-41C2-9F01-BF37D39FE424"},{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:fortiwlc:7.0-10-0:*:*:*:*:*:*:*","matchCriteriaId":"077E32D0-4309-486F-8240-7E381F4A11D3"},{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:fortiwlc:8.0-5-0:*:*:*:*:*:*:*","matchCriteriaId":"509453A9-97DC-48B0-A62F-9752CE5C6B76"},{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:fortiwlc:8.1-2-0:*:*:*:*:*:*:*","matchCriteriaId":"8F3D7433-DE22-4406-848C-B16E6CE9BE03"},{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:fortiwlc:8.2-4-0:*:*:*:*:*:*:*","matchCriteriaId":"5D237E43-F18A-4A4A-8938-D0DDF24AD681"}]}]}],"references":[{"url":"http://fortiguard.com/advisory/FG-IR-16-029","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/93286","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://fortiguard.com/advisory/FG-IR-16-029","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/93286","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]}]}},{"cve":{"id":"CVE-2017-8805","sourceIdentifier":"security@debian.org","published":"2017-10-17T18:29:00.247","lastModified":"2026-05-13T00:24:29.033","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Debian ftpsync before 20171017 does not use the rsync --safe-links option, which allows remote attackers to conduct directory traversal attacks via a crafted upstream mirror."},{"lang":"es","value":"ftpsync en Debian anterior a 20171017 no utiliza la opción --safe-links de rsync, lo que permite que atacantes remotos realicen ataques de salto de directorio mediante un mirror upstream manipulado."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":5.2}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:N","baseScore":6.4,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":4.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-22"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:debian:ftpsync:*:*:*:*:*:*:*:*","versionEndIncluding":"20171016","matchCriteriaId":"8B8024AB-7EA8-4C64-8C1F-2E1A61541908"}]}]}],"references":[{"url":"http://www.openwall.com/lists/oss-security/2017/10/17/2","source":"security@debian.org","tags":["Issue Tracking","Mailing List","Patch","Third Party Advisory"]},{"url":"https://anonscm.debian.org/cgit/mirror/archvsync.git/commit/?id=d1ca2ab2210990b6dfb664cd6776a41b71c48016","source":"security@debian.org","tags":["Issue Tracking","Patch","Vendor Advisory"]},{"url":"https://lists.debian.org/debian-mirrors/2017/10/msg00017.html","source":"security@debian.org","tags":["Issue Tracking","Mailing List","Vendor Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2017/10/17/2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Mailing List","Patch","Third Party Advisory"]},{"url":"https://anonscm.debian.org/cgit/mirror/archvsync.git/commit/?id=d1ca2ab2210990b6dfb664cd6776a41b71c48016","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Patch","Vendor Advisory"]},{"url":"https://lists.debian.org/debian-mirrors/2017/10/msg00017.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Mailing List","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2017-15994","sourceIdentifier":"cve@mitre.org","published":"2017-10-29T06:29:01.107","lastModified":"2026-05-13T00:24:29.033","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"rsync 3.1.3-development before 2017-10-24 mishandles archaic checksums, which makes it easier for remote attackers to bypass intended access restrictions. NOTE: the rsync development branch has significant use beyond the rsync developers, e.g., the code has been copied for use in various GitHub projects."},{"lang":"es","value":"rsync 3.1.3-development en versiones anteriores al 24/10/2017 gestiona de manera incorrecta las sumas de verificación arcaicas, lo que hace que sea más fácil para los atacantes remotos omitir las restricciones de acceso establecidas. NOTA: la rama de desarrollo rsync tiene un uso importante más allá de los desarrolladores rsync; por ejemplo, el código se ha copiado para su uso en varios proyectos en GitHub."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-354"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:*:*:*:*:*:*:*:*","versionEndIncluding":"3.1.2","matchCriteriaId":"F490A8DC-BDAF-4AD0-95E3-F98D5BDA75B9"}]}]}],"references":[{"url":"https://git.samba.org/?p=rsync.git%3Ba=commit%3Bh=7b8a4ecd6ff9cdf4e5d3850ebf822f1e989255b3","source":"cve@mitre.org"},{"url":"https://git.samba.org/?p=rsync.git%3Ba=commit%3Bh=9a480deec4d20277d8e20bc55515ef0640ca1e55","source":"cve@mitre.org"},{"url":"https://git.samba.org/?p=rsync.git%3Ba=commit%3Bh=c252546ceeb0925eb8a4061315e3ff0a8c55b48b","source":"cve@mitre.org"},{"url":"https://git.samba.org/?p=rsync.git%3Ba=commit%3Bh=7b8a4ecd6ff9cdf4e5d3850ebf822f1e989255b3","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://git.samba.org/?p=rsync.git%3Ba=commit%3Bh=9a480deec4d20277d8e20bc55515ef0640ca1e55","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://git.samba.org/?p=rsync.git%3Ba=commit%3Bh=c252546ceeb0925eb8a4061315e3ff0a8c55b48b","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2017-16548","sourceIdentifier":"cve@mitre.org","published":"2017-11-06T05:29:00.253","lastModified":"2026-05-13T00:24:29.033","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The receive_xattr function in xattrs.c in rsync 3.1.2 and 3.1.3-development does not check for a trailing '\\0' character in an xattr name, which allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact by sending crafted data to the daemon."},{"lang":"es","value":"La función receive_xattr en xattrs.c en rsync 3.1.2 y 3.1.3-development no comprueba un carácter final '\\0' en un nombre xattr, lo que permite que atacantes remotos provoquen una denegación de servicio (desbordamiento de búfer basado en memoria dinámica o heap y cierre inesperado de la aplicación) o, posiblemente, causen otros impactos no especificados enviando datos manipulados al demonio."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-125"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:*:*:*:*:*:*:*:*","versionStartExcluding":"2.6.9","versionEndIncluding":"3.1.2","matchCriteriaId":"2C851A23-4E75-4796-9DC4-9897E4A433E6"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*","matchCriteriaId":"8D305F7A-D159-4716-AB26-5E38BB5CD991"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*","matchCriteriaId":"B5A6F2F3-4894-4392-8296-3B8DD2679084"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*","matchCriteriaId":"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*","matchCriteriaId":"9070C9D8-A14A-467F-8253-33B966C16886"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*","matchCriteriaId":"16F59A04-14CF-49E2-9973-645477EA09DA"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*","matchCriteriaId":"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"}]}]}],"references":[{"url":"https://bugzilla.samba.org/show_bug.cgi?id=13112","source":"cve@mitre.org","tags":["Issue Tracking"]},{"url":"https://git.samba.org/rsync.git/?p=rsync.git%3Ba=commit%3Bh=47a63d90e71d3e19e0e96052bb8c6b9cb140ecc1","source":"cve@mitre.org"},{"url":"https://lists.debian.org/debian-lts-announce/2017/12/msg00020.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3543-1/","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3543-2/","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2017/dsa-4068","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://bugzilla.samba.org/show_bug.cgi?id=13112","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking"]},{"url":"https://git.samba.org/rsync.git/?p=rsync.git%3Ba=commit%3Bh=47a63d90e71d3e19e0e96052bb8c6b9cb140ecc1","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.debian.org/debian-lts-announce/2017/12/msg00020.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3543-1/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3543-2/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2017/dsa-4068","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2017-17433","sourceIdentifier":"cve@mitre.org","published":"2017-12-06T03:29:00.217","lastModified":"2026-05-13T00:24:29.033","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The recv_files function in receiver.c in the daemon in rsync 3.1.2, and 3.1.3-development before 2017-12-03, proceeds with certain file metadata updates before checking for a filename in the daemon_filter_list data structure, which allows remote attackers to bypass intended access restrictions."},{"lang":"es","value":"La función recv_files en receiver.c en el demonio en rsync 3.1.2 y 3.1.3-development en versiones anteriores a la 2017-11-03 continúa ciertas actualizaciones de metadatos de archivos antes de buscar un nombre de archivo en la estructura de datos daemon_filter_list. Esto permite que atacantes remotos omitan las restricciones de acceso planeadas."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N","baseScore":3.7,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*","matchCriteriaId":"16F59A04-14CF-49E2-9973-645477EA09DA"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*","matchCriteriaId":"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.1.2:*:*:*:*:*:*:*","matchCriteriaId":"A9D2DD08-019F-4F8A-8325-067F467F4507"}]}]}],"references":[{"url":"http://security.cucumberlinux.com/security/details.php?id=169","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://git.samba.org/?p=rsync.git%3Ba=commit%3Bh=3e06d40029cfdce9d0f73d87cfd4edaf54be9c51","source":"cve@mitre.org"},{"url":"https://lists.debian.org/debian-lts-announce/2017/12/msg00020.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2017/dsa-4068","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1522874#c4","source":"nvd@nist.gov","tags":["Patch","Third Party Advisory"]},{"url":"http://security.cucumberlinux.com/security/details.php?id=169","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://git.samba.org/?p=rsync.git%3Ba=commit%3Bh=3e06d40029cfdce9d0f73d87cfd4edaf54be9c51","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.debian.org/debian-lts-announce/2017/12/msg00020.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2017/dsa-4068","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2017-17434","sourceIdentifier":"cve@mitre.org","published":"2017-12-06T03:29:00.267","lastModified":"2026-05-13T00:24:29.033","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The daemon in rsync 3.1.2, and 3.1.3-development before 2017-12-03, does not check for fnamecmp filenames in the daemon_filter_list data structure (in the recv_files function in receiver.c) and also does not apply the sanitize_paths protection mechanism to pathnames found in \"xname follows\" strings (in the read_ndx_and_attrs function in rsync.c), which allows remote attackers to bypass intended access restrictions."},{"lang":"es","value":"El demonio en rsync 3.1.2 y 3.1.3-development en versiones anteriores a la 2017-11-03 no busca nombres de archivo fnamecmp en la estructura de datos daemon_filter_list (en la función recv_files en receiver.c) y tampoco aplica el mecanismo de protección sanitize_paths a los nombres de ruta hallados en cadenas \"xname follows\" (en la función read_ndx_and_attrs en rsync.c). Esto permite que atacantes remotos omitan las restricciones de acceso planeadas."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:*:*:*:*:*:*:*:*","versionEndIncluding":"3.1.2","matchCriteriaId":"F490A8DC-BDAF-4AD0-95E3-F98D5BDA75B9"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*","matchCriteriaId":"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"}]}]}],"references":[{"url":"http://security.cucumberlinux.com/security/details.php?id=170","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://git.samba.org/?p=rsync.git%3Ba=commit%3Bh=5509597decdbd7b91994210f700329d8a35e70a1","source":"cve@mitre.org"},{"url":"https://git.samba.org/?p=rsync.git%3Ba=commit%3Bh=70aeb5fddd1b2f8e143276f8d5a085db16c593b9","source":"cve@mitre.org"},{"url":"https://lists.debian.org/debian-lts-announce/2017/12/msg00020.html","source":"cve@mitre.org"},{"url":"https://www.debian.org/security/2017/dsa-4068","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://security.cucumberlinux.com/security/details.php?id=170","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://git.samba.org/?p=rsync.git%3Ba=commit%3Bh=5509597decdbd7b91994210f700329d8a35e70a1","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://git.samba.org/?p=rsync.git%3Ba=commit%3Bh=70aeb5fddd1b2f8e143276f8d5a085db16c593b9","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.debian.org/debian-lts-announce/2017/12/msg00020.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.debian.org/security/2017/dsa-4068","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2018-5764","sourceIdentifier":"cve@mitre.org","published":"2018-01-17T22:29:00.217","lastModified":"2024-11-21T04:09:21.117","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The parse_arguments function in options.c in rsyncd in rsync before 3.1.3 does not prevent multiple --protect-args uses, which allows remote attackers to bypass an argument-sanitization protection mechanism."},{"lang":"es","value":"La función parse_arguments en options.c en rsync, en versiones anteriores a la 3.1.3, no evita los usos múltiples de --protect-args, lo que permite que atacantes remotos omitan un mecanismo de protección de saneamiento de argumentos."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:P/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":true,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:*:*:*:*:*:*:*:*","versionEndExcluding":"3.1.3","matchCriteriaId":"A414DADA-5FD0-4C51-89E1-19BED9761274"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*","matchCriteriaId":"16F59A04-14CF-49E2-9973-645477EA09DA"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*","matchCriteriaId":"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*","matchCriteriaId":"B5A6F2F3-4894-4392-8296-3B8DD2679084"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*","matchCriteriaId":"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*","matchCriteriaId":"9070C9D8-A14A-467F-8253-33B966C16886"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/102803","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1040276","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://download.samba.org/pub/rsync/src-previews/rsync-3.1.3pre1-NEWS","source":"cve@mitre.org","tags":["Release Notes","Vendor Advisory"]},{"url":"https://git.samba.org/rsync.git/?p=rsync.git%3Ba=commit%3Bh=7706303828fcde524222babb2833864a4bd09e07","source":"cve@mitre.org"},{"url":"https://lists.debian.org/debian-lts-announce/2018/01/msg00021.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2019/03/msg00027.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00028.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201805-04","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3543-1/","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/102803","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1040276","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://download.samba.org/pub/rsync/src-previews/rsync-3.1.3pre1-NEWS","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Release Notes","Vendor Advisory"]},{"url":"https://git.samba.org/rsync.git/?p=rsync.git%3Ba=commit%3Bh=7706303828fcde524222babb2833864a4bd09e07","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.debian.org/debian-lts-announce/2018/01/msg00021.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2019/03/msg00027.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00028.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201805-04","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3543-1/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2018-20683","sourceIdentifier":"cve@mitre.org","published":"2019-01-10T01:29:00.237","lastModified":"2024-11-21T04:01:59.483","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"commands/rsync in Gitolite before 3.6.11, if .gitolite.rc enables rsync, mishandles the rsync command line, which allows attackers to have a \"bad\" impact by triggering use of an option other than -v, -n, -q, or -P."},{"lang":"es","value":"commands/rsync en Gitolite, en versiones anteriores a la 3.6.11, si .gitolite.rc habilita rsync, gestiona de manera incorrecta la línea de comandos de rsync, lo que permite que los atacantes provoquen un \"mal\" impacto desencadenando el uso de una opción diferente de -v, -n, -q o -P."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.2,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:P/A:P","baseScore":6.8,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:gitolite:gitolite:*:*:*:*:*:*:*:*","versionEndExcluding":"3.6.11","matchCriteriaId":"28CA908F-A705-45C3-B4B8-A575E9265101"}]}]}],"references":[{"url":"https://bugs.debian.org/918849","source":"cve@mitre.org","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://github.com/sitaramc/gitolite/blob/master/CHANGELOG","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://github.com/sitaramc/gitolite/commit/5df2b817255ee919991da6c310239e08c8fcc1ae","source":"cve@mitre.org","tags":["Patch","Third Party Advisory"]},{"url":"https://groups.google.com/forum/#%21topic/gitolite-announce/6xbjjmpLePQ","source":"cve@mitre.org"},{"url":"https://bugs.debian.org/918849","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://github.com/sitaramc/gitolite/blob/master/CHANGELOG","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://github.com/sitaramc/gitolite/commit/5df2b817255ee919991da6c310239e08c8fcc1ae","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"https://groups.google.com/forum/#%21topic/gitolite-announce/6xbjjmpLePQ","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2019-3463","sourceIdentifier":"security@debian.org","published":"2019-02-06T19:29:00.350","lastModified":"2024-11-21T04:42:05.797","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Insufficient sanitization of arguments passed to rsync can bypass the restrictions imposed by rssh, a restricted shell that should restrict users to perform only rsync operations, resulting in the execution of arbitrary shell commands."},{"lang":"es","value":"El saneamiento insuficiente de los argumentos que se pasan a rsync puede omitir las restricciones impuestas por rssh, un shell restringido que debería hacer que los usuarios solo puedan realizar operaciones rsync, lo que resulta en la ejecución de comandos shell arbitrarios."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-88"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:pizzashack:rssh:2.3.4:*:*:*:*:*:*:*","matchCriteriaId":"FB86D00C-9ED3-4DC3-9FFF-14B9F3E5C413"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*","matchCriteriaId":"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*","matchCriteriaId":"D100F7CE-FC64-4CC6-852A-6136D72DA419"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*","matchCriteriaId":"97A4B8DF-58DA-4AB6-A1F9-331B36409BA3"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*","matchCriteriaId":"80F0FA5D-8D3B-4C0E-81E2-87998286AF33"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*","matchCriteriaId":"815D70A8-47D3-459C-A32C-9FEACA0659D1"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*","matchCriteriaId":"7A5301BF-1402-4BE0-A0F8-69FBE79BC6D6"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*","matchCriteriaId":"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*","matchCriteriaId":"07C312A0-CD2C-4B9C-B064-6409B25C278F"}]}]}],"references":[{"url":"http://seclists.org/fulldisclosure/2021/May/78","source":"security@debian.org","tags":["Mailing List","Not Applicable","Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/106839","source":"security@debian.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://lists.debian.org/debian-lts-announce/2019/02/msg00007.html","source":"security@debian.org","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HO3MDU3AH5SLYBKHH5PJ6PHC63ASIF42/","source":"security@debian.org"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KR2OHTHMJVV4DO3HDRFQQZ5JENHDJQEN/","source":"security@debian.org"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T42YYNWJZG422GATWAHAEK4A24OKY557/","source":"security@debian.org"},{"url":"https://security.gentoo.org/glsa/202007-29","source":"security@debian.org","tags":["Third Party Advisory"]},{"url":"https://tracker.debian.org/news/1026713/accepted-rssh-234-5deb9u2-source-amd64-into-stable-embargoed-stable/","source":"security@debian.org","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3946-1/","source":"security@debian.org","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2019/dsa-4382","source":"security@debian.org","tags":["Third Party Advisory"]},{"url":"http://seclists.org/fulldisclosure/2021/May/78","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Not Applicable","Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/106839","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://lists.debian.org/debian-lts-announce/2019/02/msg00007.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HO3MDU3AH5SLYBKHH5PJ6PHC63ASIF42/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KR2OHTHMJVV4DO3HDRFQQZ5JENHDJQEN/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T42YYNWJZG422GATWAHAEK4A24OKY557/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.gentoo.org/glsa/202007-29","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://tracker.debian.org/news/1026713/accepted-rssh-234-5deb9u2-source-amd64-into-stable-embargoed-stable/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3946-1/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2019/dsa-4382","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2019-3464","sourceIdentifier":"security@debian.org","published":"2019-02-06T19:29:00.397","lastModified":"2024-11-21T04:42:05.923","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Insufficient sanitization of environment variables passed to rsync can bypass the restrictions imposed by rssh, a restricted shell that should restrict users to perform only rsync operations, resulting in the execution of arbitrary shell commands."},{"lang":"es","value":"El saneamiento insuficiente de las variables de entorno que se pasan a rsync puede omitir las restricciones impuestas por rssh, un shell restringido que debería hacer que los usuarios solo puedan realizar operaciones rsync, lo que resulta en la ejecución de comandos shell arbitrarios."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-665"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:pizzashack:rssh:2.3.4:*:*:*:*:*:*:*","matchCriteriaId":"FB86D00C-9ED3-4DC3-9FFF-14B9F3E5C413"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*","matchCriteriaId":"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*","matchCriteriaId":"D100F7CE-FC64-4CC6-852A-6136D72DA419"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*","matchCriteriaId":"97A4B8DF-58DA-4AB6-A1F9-331B36409BA3"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*","matchCriteriaId":"80F0FA5D-8D3B-4C0E-81E2-87998286AF33"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*","matchCriteriaId":"815D70A8-47D3-459C-A32C-9FEACA0659D1"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*","matchCriteriaId":"7A5301BF-1402-4BE0-A0F8-69FBE79BC6D6"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*","matchCriteriaId":"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*","matchCriteriaId":"07C312A0-CD2C-4B9C-B064-6409B25C278F"}]}]}],"references":[{"url":"http://seclists.org/fulldisclosure/2021/May/78","source":"security@debian.org","tags":["Mailing List","Not Applicable","Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/106839","source":"security@debian.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://lists.debian.org/debian-lts-announce/2019/02/msg00007.html","source":"security@debian.org","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HO3MDU3AH5SLYBKHH5PJ6PHC63ASIF42/","source":"security@debian.org"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KR2OHTHMJVV4DO3HDRFQQZ5JENHDJQEN/","source":"security@debian.org"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T42YYNWJZG422GATWAHAEK4A24OKY557/","source":"security@debian.org"},{"url":"https://security.gentoo.org/glsa/202007-29","source":"security@debian.org","tags":["Third Party Advisory"]},{"url":"https://tracker.debian.org/news/1026713/accepted-rssh-234-5deb9u2-source-amd64-into-stable-embargoed-stable/","source":"security@debian.org","tags":["Mailing List","Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3946-1/","source":"security@debian.org","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2019/dsa-4382","source":"security@debian.org","tags":["Third Party Advisory"]},{"url":"http://seclists.org/fulldisclosure/2021/May/78","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Not Applicable","Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/106839","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://lists.debian.org/debian-lts-announce/2019/02/msg00007.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HO3MDU3AH5SLYBKHH5PJ6PHC63ASIF42/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KR2OHTHMJVV4DO3HDRFQQZ5JENHDJQEN/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T42YYNWJZG422GATWAHAEK4A24OKY557/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.gentoo.org/glsa/202007-29","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://tracker.debian.org/news/1026713/accepted-rssh-234-5deb9u2-source-amd64-into-stable-embargoed-stable/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://usn.ubuntu.com/3946-1/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2019/dsa-4382","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2020-10119","sourceIdentifier":"cve@mitre.org","published":"2020-03-17T15:15:13.940","lastModified":"2024-11-21T04:54:51.480","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"cPanel before 84.0.20 allows a demo account to achieve remote code execution via a cpsrvd rsync shell (SEC-544)."},{"lang":"es","value":"cPanel versiones anteriores a 84.0.20, permite a una cuenta demo lograr una  ejecución de código remota por medio de un shell cpsrvd rsync (SEC-544)."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:cpanel:cpanel:*:*:*:*:*:*:*:*","versionEndExcluding":"84.0.20","matchCriteriaId":"FC14524B-0B3F-44C7-9D6E-63EE1558E9A2"}]}]}],"references":[{"url":"https://documentation.cpanel.net/display/CL/84+Change+Log","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"https://documentation.cpanel.net/display/CL/84+Change+Log","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2020-10120","sourceIdentifier":"cve@mitre.org","published":"2020-03-17T15:15:14.033","lastModified":"2024-11-21T04:54:51.613","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"cPanel before 84.0.20 allows resellers to achieve remote code execution as root via a cpsrvd rsync shell (SEC-545)."},{"lang":"es","value":"cPanel versiones anteriores a 84.0.20, permite a revendedores lograr una ejecución de código remota como root por medio de un shell cpsrvd rsync (SEC-545)."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":7.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.2,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:C/I:C/A:C","baseScore":9.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.0,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:cpanel:cpanel:*:*:*:*:*:*:*:*","versionEndExcluding":"84.0.20","matchCriteriaId":"FC14524B-0B3F-44C7-9D6E-63EE1558E9A2"}]}]}],"references":[{"url":"https://documentation.cpanel.net/display/CL/84+Change+Log","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"https://documentation.cpanel.net/display/CL/84+Change+Log","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2020-14387","sourceIdentifier":"secalert@redhat.com","published":"2021-05-27T20:15:07.873","lastModified":"2024-11-21T05:03:09.177","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in rsync in versions since 3.2.0pre1. Rsync improperly validates certificate with host mismatch vulnerability. A remote, unauthenticated attacker could exploit the flaw by performing a man-in-the-middle attack using a valid certificate for another hostname which could compromise confidentiality and integrity of data transmitted using rsync-ssl. The highest threat from this vulnerability is to data confidentiality and integrity. This flaw affects rsync versions before 3.2.4."},{"lang":"es","value":"Se encontró un fallo en rsync en versiones desde 3.2.0pre1. Rsync comprueba inapropiadamente el certificado con vulnerabilidad de discrepancia de host. Un atacante remoto no autenticado podría explotar el fallo llevando a cabo un de tipo ataque de tipo man-in-the-middle usando un certificado válido para otro nombre de host que podría comprometer la confidencialidad e integridad de los datos transmitidos usando rsync-ssl. La mayor amenaza de esta vulnerabilidad es la confidencialidad e integridad de los datos. Este fallo afecta a rsync versiones anteriores a 3.2.4"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":7.4,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":5.2}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:P/A:N","baseScore":5.8,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":4.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Secondary","description":[{"lang":"en","value":"CWE-297"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:*:*:*:*:*:*:*:*","versionStartIncluding":"3.2.1","versionEndExcluding":"3.2.4","matchCriteriaId":"45922B1C-D968-46DD-8EE6-F0B22F085733"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.2.0:-:*:*:*:*:*:*","matchCriteriaId":"E3E08234-5E6E-444D-B466-7FDADB951199"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.2.0:pre1:*:*:*:*:*:*","matchCriteriaId":"D3FA9537-95CA-4B6D-8162-6DC5D4B0BD32"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.2.0:pre2:*:*:*:*:*:*","matchCriteriaId":"06F27E32-CB3F-4140-AFBD-1A65031D42F5"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.2.0:pre3:*:*:*:*:*:*","matchCriteriaId":"5EB9157B-D013-400A-A5F3-8088676586C8"}]}]}],"references":[{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1875549","source":"secalert@redhat.com","tags":["Issue Tracking","Patch","Third Party Advisory"]},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1875549","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Patch","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2021-3907","sourceIdentifier":"cna@cloudflare.com","published":"2021-11-11T22:15:07.820","lastModified":"2024-11-21T06:22:45.000","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"OctoRPKI does not escape a URI with a filename containing \"..\", this allows a repository to create a file, (ex. rsync://example.org/repo/../../etc/cron.daily/evil.roa), which would then be written to disk outside the base cache folder. This could allow for remote code execution on the host machine OctoRPKI is running on."},{"lang":"es","value":"OctoRPKI no escapa a un URI con un nombre de archivo que contenga \"..\", esto permite que un repositorio cree un archivo, (ej. rsync://ejemplo.org/repo/../../etc/cron.daily/evil.roa), que luego sería escrito en el disco fuera de la carpeta de caché base. Esto podría permitir una ejecución de código remota en la máquina anfitriona en la que se ejecuta OctoRPKI"}],"metrics":{"cvssMetricV31":[{"source":"cna@cloudflare.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H","baseScore":7.4,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.2,"impactScore":5.2},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@cloudflare.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"},{"lang":"en","value":"CWE-22"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-22"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:cloudflare:octorpki:*:*:*:*:*:*:*:*","versionEndExcluding":"1.3.0","matchCriteriaId":"A39C112F-E066-40D1-9CAC-9D9F89B467EE"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]}],"references":[{"url":"https://github.com/cloudflare/cfrpki/security/advisories/GHSA-3jhm-87m6-x959","source":"cna@cloudflare.com","tags":["Third Party Advisory"]},{"url":"https://github.com/cloudflare/cfrpki/security/advisories/GHSA-cqh2-vc2f-q4fh","source":"cna@cloudflare.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2021/dsa-5033","source":"cna@cloudflare.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5041","source":"cna@cloudflare.com","tags":["Third Party Advisory"]},{"url":"https://github.com/cloudflare/cfrpki/security/advisories/GHSA-3jhm-87m6-x959","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://github.com/cloudflare/cfrpki/security/advisories/GHSA-cqh2-vc2f-q4fh","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2021/dsa-5033","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5041","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2022-26479","sourceIdentifier":"cve@mitre.org","published":"2022-07-17T23:15:08.403","lastModified":"2024-11-21T06:54:01.600","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An issue was discovered in Poly EagleEye Director II before 2.2.2.1. Existence of a certain file (which can be created via an rsync backdoor) causes all API calls to execute as admin without authentication."},{"lang":"es","value":"Se ha detectado un problema en Poly EagleEye Director II versiones anteriores a 2.2.2.1. La existencia de un determinado archivo (que puede ser creado por medio de un backdoor rsync) causa que todas las llamadas a la API sean ejecutadas como admin sin autenticación"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:poly:eagleeye_director_ii_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"2.2.2.1","matchCriteriaId":"C0BBE8CC-3850-4100-852D-EC5AA00DD00D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:poly:eagleeye_director_ii:-:*:*:*:*:*:*:*","matchCriteriaId":"416F890A-D153-4666-A468-D51110D2E258"}]}]}],"references":[{"url":"https://sec-consult.com/de/vulnerability-lab/advisory/poly-eagleeye-director-ii-kritische-schwachstellen/","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://sec-consult.com/vulnerability-lab/advisory/critical-vulnerabilities-poly-eagleeye-director-ii/","source":"cve@mitre.org","tags":["Exploit","Third Party Advisory"]},{"url":"https://www.poly.com/us/en/support/security-center","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"https://sec-consult.com/de/vulnerability-lab/advisory/poly-eagleeye-director-ii-kritische-schwachstellen/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://sec-consult.com/vulnerability-lab/advisory/critical-vulnerabilities-poly-eagleeye-director-ii/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]},{"url":"https://www.poly.com/us/en/support/security-center","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-29154","sourceIdentifier":"cve@mitre.org","published":"2022-08-02T15:15:08.520","lastModified":"2024-11-21T06:58:35.897","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An issue was discovered in rsync before 3.2.5 that allows malicious remote servers to write arbitrary files inside the directories of connecting peers. The server chooses which files/directories are sent to the client. However, the rsync client performs insufficient validation of file names. A malicious rsync server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the rsync client target directory and subdirectories (for example, overwrite the .ssh/authorized_keys file)."},{"lang":"es","value":"Se ha detectado un problema en rsync versiones anteriores a 3.2.5, que permite a servidores remotos maliciosos escribir archivos arbitrarios dentro de los directorios de los pares conectados. El servidor elige qué archivos/directorios son enviados al cliente. Sin embargo, el cliente rsync no lleva a cabo una comprobación suficiente de los nombres de los archivos. Un servidor rsync malicioso (o un atacante de tipo Man-in-The-Middle) puede sobrescribir archivos arbitrarios en el directorio de destino del cliente rsync y en los subdirectorios (por ejemplo, sobrescribir el archivo .ssh/authorized_keys)"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H","baseScore":7.4,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.2,"impactScore":5.2}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:*:*:*:*:*:*:*:*","versionEndExcluding":"3.2.5","matchCriteriaId":"4F991373-13AF-47B0-B9A1-79AF867E2716"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*","matchCriteriaId":"80E516C0-98A4-4ADE-B69F-66A772E2BAAA"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*","matchCriteriaId":"5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD"}]}]}],"references":[{"url":"http://www.openwall.com/lists/oss-security/2022/08/02/1","source":"cve@mitre.org","tags":["Exploit","Mailing List","Patch","Third Party Advisory"]},{"url":"https://github.com/WayneD/rsync/tags","source":"cve@mitre.org","tags":["Release Notes","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NMBOJ77A7T7PQCARMDUK75TE6LLESZ3O/","source":"cve@mitre.org"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YRQAI7H4M4RQZ2IWZUEEXECBE5D56BH2/","source":"cve@mitre.org"},{"url":"http://www.openwall.com/lists/oss-security/2022/08/02/1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Mailing List","Patch","Third Party Advisory"]},{"url":"https://github.com/WayneD/rsync/tags","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Release Notes","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NMBOJ77A7T7PQCARMDUK75TE6LLESZ3O/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YRQAI7H4M4RQZ2IWZUEEXECBE5D56BH2/","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2024-45234","sourceIdentifier":"cve@mitre.org","published":"2024-08-24T23:15:04.037","lastModified":"2025-11-03T21:16:19.990","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) an ROA or a Manifest containing a signedAttrs encoded in non-canonical form. This bypasses Fort's BER decoder, reaching a point in the code that panics when faced with data not encoded in DER. Because Fort is an RPKI Relying Party, a panic can lead to Route Origin Validation unavailability, which can lead to compromised routing."},{"lang":"es","value":"Se descubrió un problema en Fort antes de la versión 1.6.3. Un repositorio RPKI malicioso que desciende de un ancla de confianza (confiable) puede servir (a través de rsync o RRDP) un ROA o un manifiesto que contenga atributos firmados codificados en forma no canónica. Esto evita el decodificador BER de Fort, llegando a un punto en el código que entra en pánico cuando se enfrenta a datos no codificados en DER. Debido a que Fort es una parte de confianza de RPKI, un pánico puede provocar que la validación del origen de la ruta no esté disponible, lo que puede comprometer el enrutamiento."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-295"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:nicmx:fort-validator:*:*:*:*:*:*:*:*","versionEndExcluding":"1.6.3","matchCriteriaId":"1B6DF9BD-7BC4-4AFF-8E93-6810EC99D678"}]}]}],"references":[{"url":"https://nicmx.github.io/FORT-validator/CVE.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2025/02/msg00030.html","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2024-45235","sourceIdentifier":"cve@mitre.org","published":"2024-08-24T23:15:04.130","lastModified":"2025-11-03T21:16:20.223","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a resource certificate containing an Authority Key Identifier extension that lacks the keyIdentifier field. Fort references this pointer without sanitizing it first. Because Fort is an RPKI Relying Party, a crash can lead to Route Origin Validation unavailability, which can lead to compromised routing."},{"lang":"es","value":"Se descubrió un problema en Fort antes de la versión 1.6.3. Un repositorio RPKI malicioso que desciende de un Trust Anchor (confiable) puede servir (a través de rsync o RRDP) un certificado de recurso que contenga una extensión de Identificador de clave de autoridad que carece del campo keyIdentifier. Fort hace referencia a este indicador sin desinfectarlo primero. Debido a que Fort es una parte de confianza de RPKI, una falla puede provocar que la validación del origen de la ruta no esté disponible, lo que puede comprometer el enrutamiento."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-476"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:nicmx:fort_validator:*:*:*:*:*:*:*:*","versionEndExcluding":"1.6.3","matchCriteriaId":"8C660C6E-5D9F-44FE-805D-ADC77F2755C2"}]}]}],"references":[{"url":"https://nicmx.github.io/FORT-validator/CVE.html","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2025/02/msg00030.html","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2024-45236","sourceIdentifier":"cve@mitre.org","published":"2024-08-24T23:15:04.187","lastModified":"2025-11-03T21:16:20.377","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a signed object containing an empty signedAttributes field. Fort accesses the set's elements without sanitizing it first. Because Fort is an RPKI Relying Party, a crash can lead to Route Origin Validation unavailability, which can lead to compromised routing."},{"lang":"es","value":"Se descubrió un problema en Fort antes de la versión 1.6.3. Un repositorio RPKI malicioso que desciende de un Trust Anchor (confiable) puede servir (a través de rsync o RRDP) un objeto firmado que contenga un campo firmadoAttributes vacío. Fort accede a los elementos del decorado sin desinfectarlo previamente. Debido a que Fort es una parte de confianza de RPKI, una falla puede provocar que la validación del origen de la ruta no esté disponible, lo que puede comprometer el enrutamiento."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:nicmx:fort-validator:*:*:*:*:*:*:*:*","versionEndExcluding":"1.6.3","matchCriteriaId":"1B6DF9BD-7BC4-4AFF-8E93-6810EC99D678"}]}]}],"references":[{"url":"https://nicmx.github.io/FORT-validator/CVE.html","source":"cve@mitre.org","tags":["Patch","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2025/02/msg00030.html","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2024-45237","sourceIdentifier":"cve@mitre.org","published":"2024-08-24T23:15:04.243","lastModified":"2025-11-03T21:16:20.580","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a resource certificate containing a Key Usage extension composed of more than two bytes of data. Fort writes this string into a 2-byte buffer without properly sanitizing its length, leading to a buffer overflow."},{"lang":"es","value":"Se descubrió un problema en Fort antes de la versión 1.6.3. Un repositorio RPKI malicioso que desciende de un Trust Anchor (confiable) puede servir (a través de rsync o RRDP) un certificado de recurso que contenga una extensión de uso de clave compuesta por más de dos bytes de datos. Fort escribe esta cadena en un búfer de 2 bytes sin desinfectar adecuadamente su longitud, lo que provoca un desbordamiento del búfer."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-120"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-120"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:nicmx:fort-validator:*:*:*:*:*:*:*:*","versionEndExcluding":"1.6.3","matchCriteriaId":"1B6DF9BD-7BC4-4AFF-8E93-6810EC99D678"}]}]}],"references":[{"url":"https://nicmx.github.io/FORT-validator/CVE.html","source":"cve@mitre.org","tags":["Patch","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2025/02/msg00030.html","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2024-45238","sourceIdentifier":"cve@mitre.org","published":"2024-08-24T23:15:04.303","lastModified":"2025-11-03T21:16:20.763","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a resource certificate containing a bit string that doesn't properly decode into a Subject Public Key. OpenSSL does not report this problem during parsing, and when compiled with OpenSSL libcrypto versions below 3, Fort recklessly dereferences the pointer. Because Fort is an RPKI Relying Party, a crash can lead to Route Origin Validation unavailability, which can lead to compromised routing."},{"lang":"es","value":"Se descubrió un problema en Fort antes de la versión 1.6.3. Un repositorio RPKI malicioso que desciende de un Trust Anchor (confiable) puede servir (a través de rsync o RRDP) un certificado de recurso que contiene una cadena de bits que no se decodifica correctamente en una clave pública del sujeto. OpenSSL no informa este problema durante el análisis, y cuando se compila con versiones de libcrypto de OpenSSL inferiores a 3, Fort imprudentemente elimina la referencia al puntero. Debido a que Fort es una parte de confianza de RPKI, una falla puede provocar que la validación del origen de la ruta no esté disponible, lo que puede comprometer el enrutamiento."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-476"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:nicmx:fort_validator:*:*:*:*:*:*:*:*","versionEndExcluding":"1.6.3","matchCriteriaId":"8C660C6E-5D9F-44FE-805D-ADC77F2755C2"}]}]}],"references":[{"url":"https://nicmx.github.io/FORT-validator/CVE.html","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2025/02/msg00030.html","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2024-45239","sourceIdentifier":"cve@mitre.org","published":"2024-08-24T23:15:04.353","lastModified":"2025-11-03T21:16:20.913","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) an ROA or a Manifest containing a null eContent field. Fort dereferences the pointer without sanitizing it first. Because Fort is an RPKI Relying Party, a crash can lead to Route Origin Validation unavailability, which can lead to compromised routing."},{"lang":"es","value":"Se descubrió un problema en Fort antes de la versión 1.6.3. Un repositorio RPKI malicioso que desciende de un Trust Anchor (confiable) puede servir (a través de rsync o RRDP) un ROA o un Manifiesto que contenga un campo de contenido electrónico nulo. Fort elimina la referencia al puntero sin desinfectarlo primero. Debido a que Fort es una parte de confianza de RPKI, una falla puede provocar que la validación del origen de la ruta no esté disponible, lo que puede comprometer el enrutamiento."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-476"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-476"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:nicmx:fort-validator:*:*:*:*:*:*:*:*","versionEndExcluding":"1.6.3","matchCriteriaId":"1B6DF9BD-7BC4-4AFF-8E93-6810EC99D678"}]}]}],"references":[{"url":"https://nicmx.github.io/FORT-validator/CVE.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2025/02/msg00030.html","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2024-56375","sourceIdentifier":"cve@mitre.org","published":"2024-12-22T23:15:06.613","lastModified":"2025-04-22T15:54:43.887","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"An integer underflow was discovered in Fort 1.6.3 and 1.6.4 before 1.6.5. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a Manifest RPKI object containing an empty fileList. Fort dereferences (and, shortly afterwards, writes to) this array during a shuffle attempt, before the validation that would normally reject it when empty. This out-of-bounds access is caused by an integer underflow that causes the surrounding loop to iterate infinitely. Because the product is permanently stuck attempting to overshuffle an array that doesn't actually exist, a crash is nearly guaranteed."},{"lang":"es","value":"Se descubrió un desbordamiento de enteros en Fort 1.6.3 y 1.6.4 antes de 1.6.5. Un repositorio RPKI malicioso que desciende de un Trust Anchor (confiable) puede servir (a través de rsync o RRDP) un objeto RPKI de manifiesto que contiene una lista de archivos vacía. Fort desreferencia (y, poco después, escribe en) esta matriz durante un intento de mezcla, antes de la validación que normalmente la rechazaría si estuviera vacía. Este acceso fuera de los límites se debe a un desbordamiento de enteros que hace que el bucle circundante se repita infinitamente. Debido a que el producto está bloqueado permanentemente al intentar mezclar una matriz que en realidad no existe, es casi seguro que se produzca un bloqueo."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"cve@mitre.org","type":"Secondary","description":[{"lang":"en","value":"CWE-191"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-191"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:nicmx:fort_validator:1.6.3:*:*:*:*:*:*:*","matchCriteriaId":"2E9FD78E-6B64-44C5-B008-E8C80D24E293"},{"vulnerable":true,"criteria":"cpe:2.3:a:nicmx:fort_validator:1.6.4:*:*:*:*:*:*:*","matchCriteriaId":"AE6BA852-9F48-4736-AC29-B6B4E48974EF"}]}]}],"references":[{"url":"https://github.com/NICMx/FORT-validator/issues/154","source":"cve@mitre.org","tags":["Issue Tracking","Vendor Advisory"]},{"url":"https://nicmx.github.io/FORT-validator/CVE.html","source":"cve@mitre.org","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2024-12085","sourceIdentifier":"secalert@redhat.com","published":"2025-01-14T18:15:25.123","lastModified":"2026-04-14T22:16:24.497","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length (s2length) to cause a comparison between a checksum and uninitialized memory and leak one byte of uninitialized stack data at a time."},{"lang":"es","value":"Se encontró un fallo en rsync daemon que podría activarse cuando rsync compara sumas de comprobación de archivos. Este fallo permite a un atacante manipular la longitud de la suma de comprobación (s2length) para provocar una comparación entre una suma de comprobación y una memoria no inicializada y filtrar un byte de datos de pila no inicializados a la vez."}],"metrics":{"cvssMetricV31":[{"source":"secalert@redhat.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Secondary","description":[{"lang":"en","value":"CWE-908"}]},{"source":"nvd@nist.gov","type":"Secondary","description":[{"lang":"en","value":"CWE-908"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:*:*:*:*:*:*:*:*","versionEndExcluding":"3.3.0","matchCriteriaId":"C3A9FCFD-8115-4C36-95D1-625B124ED9F9"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openshift:5.0:*:*:*:*:*:*:*","matchCriteriaId":"3FD9C791-100F-4672-AB43-94B80DFAF818"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openshift_container_platform:4.12:*:*:*:*:*:*:*","matchCriteriaId":"40449571-22F8-44FA-B57B-B43F71AB25E2"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openshift_container_platform:4.13:*:*:*:*:*:*:*","matchCriteriaId":"1FFF1D51-ABA8-4E54-B81C-A88C8A5E4842"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openshift_container_platform:4.14:*:*:*:*:*:*:*","matchCriteriaId":"486B3F69-1551-4F8B-B25B-A5864248811B"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openshift_container_platform:4.15:*:*:*:*:*:*:*","matchCriteriaId":"4716808D-67EB-4E14-9910-B248A500FAFA"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openshift_container_platform:4.16:*:*:*:*:*:*:*","matchCriteriaId":"0EBB38E1-4161-402D-8A37-74D92891AAC5"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openshift_container_platform:4.17:*:*:*:*:*:*:*","matchCriteriaId":"F4B66318-326A-43E4-AF14-015768296E4E"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*","matchCriteriaId":"F4CFF558-3C47-480D-A2F0-BABF26042943"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"7F6FB57C-2BC7-487C-96DD-132683AEB35D"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:8.8:*:*:*:*:*:*:*","matchCriteriaId":"62C31522-0A17-4025-B269-855C7F4B45C2"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:9.2:*:*:*:*:*:*:*","matchCriteriaId":"3C74F6FA-FA6C-4648-9079-91446E45EE47"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:9.4:*:*:*:*:*:*:*","matchCriteriaId":"B03506D7-0FCD-47B7-90F6-DDEEB5C5A733"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:9.6:*:*:*:*:*:*:*","matchCriteriaId":"C4CF8D2F-DACA-49C2-A9F4-63496B0A9A80"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_arm_64:8.0_aarch64:*:*:*:*:*:*:*","matchCriteriaId":"5A47EF78-A5B6-4B89-8B74-EEB0647C549F"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_arm_64:9.0_aarch64:*:*:*:*:*:*:*","matchCriteriaId":"2F7DAD7C-9369-4A87-A1D0-4208D3AF0CDC"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_arm_64:9.2_aarch64:*:*:*:*:*:*:*","matchCriteriaId":"D85E0DBA-A856-472A-8271-A4F37C35F952"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_arm_64_eus:8.8_aarch64:*:*:*:*:*:*:*","matchCriteriaId":"213593D4-EB5A-4A1B-BDF3-3F043C5F6A6C"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_arm_64_eus:9.4_aarch64:*:*:*:*:*:*:*","matchCriteriaId":"01363FFA-F7A6-43FC-8D47-E67F95410095"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_arm_64_eus:9.6_aarch64:*:*:*:*:*:*:*","matchCriteriaId":"CA15BFFC-B8E8-4EE3-8E14-8C95DF6C99C4"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:8.0_s390x:*:*:*:*:*:*:*","matchCriteriaId":"32AF225E-94C0-4D07-900C-DD868C05F554"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:9.0_s390x:*:*:*:*:*:*:*","matchCriteriaId":"FB056B47-1F45-4CE4-81F6-872F66C24C29"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:9.2_s390x:*:*:*:*:*:*:*","matchCriteriaId":"2E068ABB-31C2-416E-974A-95E07A2BAB0A"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.8_s390x:*:*:*:*:*:*:*","matchCriteriaId":"22C65F53-D624-48A9-A9B7-4C78A31E19F9"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:9.4_s390x:*:*:*:*:*:*:*","matchCriteriaId":"F843B777-5C64-4CAE-80D6-89DC2C9515B1"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:9.6_s390x:*:*:*:*:*:*:*","matchCriteriaId":"778ACA25-ED77-4EFC-A183-DE094C58B268"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:8.0_ppc64le:*:*:*:*:*:*:*","matchCriteriaId":"23D471AC-7DCA-4425-AD91-E5D928753A8C"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:8.8_ppc64le:*:*:*:*:*:*:*","matchCriteriaId":"5B4A41C6-7ECB-4F3D-AB10-96F2D00B6840"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:9.0_ppc64le:*:*:*:*:*:*:*","matchCriteriaId":"E07C1C58-0E5F-4B56-9B8D-5DE67DB00F79"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:9.2_ppc64le:*:*:*:*:*:*:*","matchCriteriaId":"ED521457-498F-4E43-B714-9A3F2C3CD09A"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:9.4_ppc64le:*:*:*:*:*:*:*","matchCriteriaId":"FC3CBA5D-9E5D-4C46-B37E-7BB35BE8DADB"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:9.6_ppc64le:*:*:*:*:*:*:*","matchCriteriaId":"0516993E-CBD5-44F1-8684-7172C9ABFD0A"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*","matchCriteriaId":"9BBCD86A-E6C7-4444-9D74-F861084090F0"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*","matchCriteriaId":"51EF4996-72F4-4FA4-814F-F5991E7A8318"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*","matchCriteriaId":"6897676D-53F9-45B3-B27F-7FF9A4C58D33"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*","matchCriteriaId":"E28F226A-CBC7-4A32-BE58-398FA5B42481"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6:*:*:*:*:*:*:*","matchCriteriaId":"76C24D94-834A-4E9D-8F73-624AFA99AAA2"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:9.2:*:*:*:*:*:*:*","matchCriteriaId":"F32CA554-F9D7-425B-8F1C-89678507F28C"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:9.4:*:*:*:*:*:*:*","matchCriteriaId":"39D345D3-108A-4551-A112-5EE51991411A"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:9.6:*:*:*:*:*:*:*","matchCriteriaId":"0FDD919E-B7FE-4EC5-8D6B-EC9A4723D6E2"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.4_ppc64le:*:*:*:*:*:*:*","matchCriteriaId":"6E645F29-0FE0-477F-969A-55F009AB018C"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.6_ppc64le:*:*:*:*:*:*:*","matchCriteriaId":"6C138DAF-9769-43B0-A9E6-320738EB3415"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.8_ppc64le:*:*:*:*:*:*:*","matchCriteriaId":"18037675-B4D3-401E-96D3-9EA3C1993920"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:9.0_ppc64le:*:*:*:*:*:*:*","matchCriteriaId":"3DA48001-66CC-4E71-A944-68D7D654031E"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:9.2_ppc64le:*:*:*:*:*:*:*","matchCriteriaId":"CC6A25CB-907A-4D05-8460-A2488938A8BE"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:9.4_ppc64le:*:*:*:*:*:*:*","matchCriteriaId":"3C30F155-DF7D-4195-92D9-A5B80407228D"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:9.6_ppc64le:*:*:*:*:*:*:*","matchCriteriaId":"41F1A2F3-BCEF-4A8C-BA2F-DF1FF13E6179"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:*:*:*:*:*:*:*","matchCriteriaId":"AC10D919-57FD-4725-B8D2-39ECB476902F"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_tus:8.6:*:*:*:*:*:*:*","matchCriteriaId":"1272DF03-7674-4BD4-8E64-94004B195448"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_tus:8.8:*:*:*:*:*:*:*","matchCriteriaId":"F1CA946D-1665-4874-9D41-C7D963DD1F56"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_update_services_for_sap_solutions:8.4:*:*:*:*:*:*:*","matchCriteriaId":"E881C927-DF96-4D2E-9887-FF12E456B1FB"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_update_services_for_sap_solutions:8.6:*:*:*:*:*:*:*","matchCriteriaId":"FB096D5D-E8F6-4164-8B76-0217B7151D30"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_update_services_for_sap_solutions:9.0:*:*:*:*:*:*:*","matchCriteriaId":"083AAC55-E87B-482A-A1F4-8F2DEB90CB23"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_update_services_for_sap_solutions:9.2:*:*:*:*:*:*:*","matchCriteriaId":"1FD9BF0E-7ACF-4A83-B754-6E3979ED903F"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_update_services_for_sap_solutions:9.6:*:*:*:*:*:*:*","matchCriteriaId":"554AA8CA-A930-4788-B052-497E09D48381"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:almalinux:almalinux:8.0:-:*:*:*:*:*:*","matchCriteriaId":"F34AA7F4-6ECE-4FA5-A310-3509648BD7C7"},{"vulnerable":true,"criteria":"cpe:2.3:o:almalinux:almalinux:9.0:-:*:*:*:*:*:*","matchCriteriaId":"57B93E9A-1483-4FF7-BF45-BD0D7D9F1747"},{"vulnerable":true,"criteria":"cpe:2.3:o:almalinux:almalinux:10.0:-:*:*:*:*:*:*","matchCriteriaId":"66FD02F3-C1C2-4E1D-98C1-8889004437D4"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:archlinux:arch_linux:-:*:*:*:*:*:*:*","matchCriteriaId":"4824AE2D-462B-477D-9206-3E2090A32146"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:gentoo:linux:-:*:*:*:*:*:*:*","matchCriteriaId":"92121D8A-529E-454A-BC8D-B6E0017E615D"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:nixos:nixos:*:*:*:*:*:*:*:*","versionEndExcluding":"24.11","matchCriteriaId":"213883D5-9E62-4496-82E3-D5377995C257"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:suse:suse_linux:-:*:*:*:*:*:*:*","matchCriteriaId":"1FB65EF0-0E6A-4178-8564-3CC96891A072"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:tritondatacenter:smartos:*:*:*:*:*:*:*:*","versionEndExcluding":"20250123","matchCriteriaId":"8EBD774C-F48F-45EC-A5DD-B1E56E54EF71"}]}]}],"references":[{"url":"https://access.redhat.com/errata/RHBA-2025:6470","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/errata/RHSA-2025:0324","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2025:0325","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2025:0637","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2025:0688","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2025:0714","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2025:0774","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2025:0787","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2025:0790","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2025:0849","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2025:0884","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2025:0885","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2025:1120","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2025:1123","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2025:1128","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2025:1225","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2025:1227","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2025:1242","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2025:1451","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2025:21885","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/errata/RHSA-2025:2701","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/security/cve/CVE-2024-12085","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2330539","source":"secalert@redhat.com","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://kb.cert.org/vuls/id/952657","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2025/01/msg00008.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20250131-0002/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.kb.cert.org/vuls/id/952657","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://github.com/google/security-research/security/advisories/GHSA-p5pg-x43v-mvqj","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Exploit","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2024-12086","sourceIdentifier":"secalert@redhat.com","published":"2025-01-14T18:15:25.297","lastModified":"2026-05-26T07:16:16.747","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in rsync. It could allow a server to enumerate the contents of an arbitrary file from the client's machine. This issue occurs when files are being copied from a client to a server. During this process, the rsync server will send checksums of local data to the client to compare with in order to determine what data needs to be sent to the server. By sending specially constructed checksum values for arbitrary files, an attacker may be able to reconstruct the data of those files byte-by-byte based on the responses from the client."},{"lang":"es","value":"Se encontró un fallo en rsync que podría permitir que un servidor enumere el contenido de un archivo arbitrario de la máquina del cliente. Este problema ocurre cuando se copian archivos de un cliente a un servidor. Durante este proceso, el servidor rsync enviará sumas de comprobación de datos locales al cliente para que las compare y determine qué datos deben enviarse al servidor. Al enviar valores de suma de comprobación especialmente creados para archivos arbitrarios, un atacante puede reconstruir los datos de esos archivos byte por byte en función de las respuestas del cliente."}],"metrics":{"cvssMetricV31":[{"source":"secalert@redhat.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.6,"impactScore":4.0},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N","baseScore":6.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":4.0}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Secondary","description":[{"lang":"en","value":"CWE-390"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:*:*:*:*:*:*:*:*","versionEndIncluding":"3.3.0","matchCriteriaId":"477D69AB-8601-4994-9695-8DE48E1587A5"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openshift_container_platform:4.0:*:*:*:*:*:*:*","matchCriteriaId":"932D137F-528B-4526-9A89-CD59FA1AB0FE"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*","matchCriteriaId":"2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*","matchCriteriaId":"142AD0DD-4CF3-4D74-9442-459CE3347E3A"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*","matchCriteriaId":"F4CFF558-3C47-480D-A2F0-BABF26042943"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"7F6FB57C-2BC7-487C-96DD-132683AEB35D"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"D65C2163-CFC2-4ABB-8F4E-CB09CEBD006C"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:almalinux:almalinux:8.0:-:*:*:*:*:*:*","matchCriteriaId":"F34AA7F4-6ECE-4FA5-A310-3509648BD7C7"},{"vulnerable":true,"criteria":"cpe:2.3:o:almalinux:almalinux:9.0:-:*:*:*:*:*:*","matchCriteriaId":"57B93E9A-1483-4FF7-BF45-BD0D7D9F1747"},{"vulnerable":true,"criteria":"cpe:2.3:o:almalinux:almalinux:10.0:-:*:*:*:*:*:*","matchCriteriaId":"66FD02F3-C1C2-4E1D-98C1-8889004437D4"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:archlinux:arch_linux:-:*:*:*:*:*:*:*","matchCriteriaId":"4824AE2D-462B-477D-9206-3E2090A32146"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:gentoo:linux:-:*:*:*:*:*:*:*","matchCriteriaId":"92121D8A-529E-454A-BC8D-B6E0017E615D"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:nixos:nixos:*:*:*:*:*:*:*:*","versionEndExcluding":"24.11","matchCriteriaId":"213883D5-9E62-4496-82E3-D5377995C257"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:suse:suse_linux:-:*:*:*:*:*:*:*","matchCriteriaId":"1FB65EF0-0E6A-4178-8564-3CC96891A072"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:tritondatacenter:smartos:*:*:*:*:*:*:*:*","versionEndExcluding":"20250123","matchCriteriaId":"8EBD774C-F48F-45EC-A5DD-B1E56E54EF71"}]}]}],"references":[{"url":"https://access.redhat.com/errata/RHBA-2025:6470","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/errata/RHSA-2026:19368","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/errata/RHSA-2026:20603","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/security/cve/CVE-2024-12086","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2330577","source":"secalert@redhat.com","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://kb.cert.org/vuls/id/952657","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2025/01/msg00008.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20250131-0002/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.kb.cert.org/vuls/id/952657","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://github.com/google/security-research/security/advisories/GHSA-p5pg-x43v-mvqj","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Exploit","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2024-12087","sourceIdentifier":"secalert@redhat.com","published":"2025-01-14T18:15:25.467","lastModified":"2026-04-14T22:16:26.837","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A path traversal vulnerability exists in rsync. It stems from behavior enabled by the `--inc-recursive` option, a default-enabled option for many client options and can be enabled by the server even if not explicitly enabled by the client. When using the `--inc-recursive` option, a lack of proper symlink verification coupled with deduplication checks occurring on a per-file-list basis could allow a server to write files outside of the client's intended destination directory. A malicious server could write malicious files to arbitrary locations named after valid directories/paths on the client."},{"lang":"es","value":"Existe una vulnerabilidad Path Traversal en rsync. Se origina en un comportamiento habilitado por la opción `--inc-recursive`, una opción habilitada de manera predeterminada para muchas opciones de cliente y que puede ser habilitada por el servidor incluso si no está habilitada explícitamente por el cliente. Al usar la opción `--inc-recursive`, la falta de una verificación de enlace simbólico adecuada junto con las comprobaciones de deduplicación que se realizan en una lista de archivos por archivo podría permitir que un servidor escriba archivos fuera del directorio de destino previsto del cliente. Un servidor malintencionado podría escribir archivos malintencionados en ubicaciones arbitrarias con nombres de directorios/rutas válidos en el cliente."}],"metrics":{"cvssMetricV31":[{"source":"secalert@redhat.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]},{"source":"nvd@nist.gov","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:*:*:*:*:*:*:*:*","versionEndIncluding":"3.3.0","matchCriteriaId":"477D69AB-8601-4994-9695-8DE48E1587A5"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:almalinux:almalinux:8.0:-:*:*:*:*:*:*","matchCriteriaId":"F34AA7F4-6ECE-4FA5-A310-3509648BD7C7"},{"vulnerable":true,"criteria":"cpe:2.3:o:almalinux:almalinux:9.0:-:*:*:*:*:*:*","matchCriteriaId":"57B93E9A-1483-4FF7-BF45-BD0D7D9F1747"},{"vulnerable":true,"criteria":"cpe:2.3:o:almalinux:almalinux:10.0:-:*:*:*:*:*:*","matchCriteriaId":"66FD02F3-C1C2-4E1D-98C1-8889004437D4"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:archlinux:arch_linux:-:*:*:*:*:*:*:*","matchCriteriaId":"4824AE2D-462B-477D-9206-3E2090A32146"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:gentoo:linux:-:*:*:*:*:*:*:*","matchCriteriaId":"92121D8A-529E-454A-BC8D-B6E0017E615D"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:nixos:nixos:*:*:*:*:*:*:*:*","versionEndExcluding":"24.11","matchCriteriaId":"213883D5-9E62-4496-82E3-D5377995C257"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:suse:suse_linux:-:*:*:*:*:*:*:*","matchCriteriaId":"1FB65EF0-0E6A-4178-8564-3CC96891A072"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:tritondatacenter:smartos:*:*:*:*:*:*:*:*","versionEndExcluding":"20250123","matchCriteriaId":"8EBD774C-F48F-45EC-A5DD-B1E56E54EF71"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*","matchCriteriaId":"F4CFF558-3C47-480D-A2F0-BABF26042943"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"7F6FB57C-2BC7-487C-96DD-132683AEB35D"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:9.6:*:*:*:*:*:*:*","matchCriteriaId":"C4CF8D2F-DACA-49C2-A9F4-63496B0A9A80"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_arm_64:8.0_aarch64:*:*:*:*:*:*:*","matchCriteriaId":"5A47EF78-A5B6-4B89-8B74-EEB0647C549F"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_arm_64:9.0_aarch64:*:*:*:*:*:*:*","matchCriteriaId":"2F7DAD7C-9369-4A87-A1D0-4208D3AF0CDC"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_arm_64_eus:9.6_aarch64:*:*:*:*:*:*:*","matchCriteriaId":"CA15BFFC-B8E8-4EE3-8E14-8C95DF6C99C4"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:8.0_s390x:*:*:*:*:*:*:*","matchCriteriaId":"32AF225E-94C0-4D07-900C-DD868C05F554"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:9.0_s390x:*:*:*:*:*:*:*","matchCriteriaId":"FB056B47-1F45-4CE4-81F6-872F66C24C29"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:9.6_s390x:*:*:*:*:*:*:*","matchCriteriaId":"778ACA25-ED77-4EFC-A183-DE094C58B268"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:8.0_ppc64le:*:*:*:*:*:*:*","matchCriteriaId":"23D471AC-7DCA-4425-AD91-E5D928753A8C"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:9.0_ppc64le:*:*:*:*:*:*:*","matchCriteriaId":"E07C1C58-0E5F-4B56-9B8D-5DE67DB00F79"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:9.6_ppc64le:*:*:*:*:*:*:*","matchCriteriaId":"0516993E-CBD5-44F1-8684-7172C9ABFD0A"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:9.6:*:*:*:*:*:*:*","matchCriteriaId":"0FDD919E-B7FE-4EC5-8D6B-EC9A4723D6E2"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:9.6_ppc64le:*:*:*:*:*:*:*","matchCriteriaId":"41F1A2F3-BCEF-4A8C-BA2F-DF1FF13E6179"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_update_services_for_sap_solutions:9.6:*:*:*:*:*:*:*","matchCriteriaId":"554AA8CA-A930-4788-B052-497E09D48381"}]}]}],"references":[{"url":"https://access.redhat.com/errata/RHBA-2025:6470","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/errata/RHSA-2025:23154","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/errata/RHSA-2025:23235","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/errata/RHSA-2025:23407","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/errata/RHSA-2025:23415","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/errata/RHSA-2025:23416","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/errata/RHSA-2025:23842","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/errata/RHSA-2025:23853","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/errata/RHSA-2025:23854","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/errata/RHSA-2025:23858","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/errata/RHSA-2025:2600","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2025:7050","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2025:8385","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/security/cve/CVE-2024-12087","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2330672","source":"secalert@redhat.com","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://kb.cert.org/vuls/id/952657","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2025/01/msg00008.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20250131-0002/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.kb.cert.org/vuls/id/952657","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://github.com/google/security-research/security/advisories/GHSA-p5pg-x43v-mvqj","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Exploit","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2024-12088","sourceIdentifier":"secalert@redhat.com","published":"2025-01-14T18:15:25.643","lastModified":"2026-04-14T22:16:27.247","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in rsync. When using the `--safe-links` option, the rsync client fails to properly verify if a symbolic link destination sent from the server contains another symbolic link within it. This results in a path traversal vulnerability, which may lead to arbitrary file write outside the desired directory."},{"lang":"es","value":"Se encontró un fallo en rsync. Al usar la opción `--safe-links`, rsync no verifica correctamente si un destino de enlace simbólico contiene otro enlace simbólico dentro de él. Esto genera una vulnerabilidad de Path Traversal, que puede provocar la escritura arbitraria de archivos fuera del directorio deseado."}],"metrics":{"cvssMetricV31":[{"source":"secalert@redhat.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]},{"source":"nvd@nist.gov","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:*:*:*:*:*:*:*:*","versionEndIncluding":"3.3.0","matchCriteriaId":"477D69AB-8601-4994-9695-8DE48E1587A5"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:discovery:1.14:*:*:*:*:*:*:*","matchCriteriaId":"60CA1773-D5FF-4CEA-817B-DD589551B3AE"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openshift_container_platform:4.0:*:*:*:*:*:*:*","matchCriteriaId":"932D137F-528B-4526-9A89-CD59FA1AB0FE"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*","matchCriteriaId":"2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*","matchCriteriaId":"142AD0DD-4CF3-4D74-9442-459CE3347E3A"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*","matchCriteriaId":"F4CFF558-3C47-480D-A2F0-BABF26042943"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"7F6FB57C-2BC7-487C-96DD-132683AEB35D"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"D65C2163-CFC2-4ABB-8F4E-CB09CEBD006C"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:9.6:*:*:*:*:*:*:*","matchCriteriaId":"C4CF8D2F-DACA-49C2-A9F4-63496B0A9A80"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_arm_64:8.0_aarch64:*:*:*:*:*:*:*","matchCriteriaId":"5A47EF78-A5B6-4B89-8B74-EEB0647C549F"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_arm_64:9.0_aarch64:*:*:*:*:*:*:*","matchCriteriaId":"2F7DAD7C-9369-4A87-A1D0-4208D3AF0CDC"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_arm_64_eus:9.6_aarch64:*:*:*:*:*:*:*","matchCriteriaId":"CA15BFFC-B8E8-4EE3-8E14-8C95DF6C99C4"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:8.0_s390x:*:*:*:*:*:*:*","matchCriteriaId":"32AF225E-94C0-4D07-900C-DD868C05F554"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:9.0_s390x:*:*:*:*:*:*:*","matchCriteriaId":"FB056B47-1F45-4CE4-81F6-872F66C24C29"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:9.6_s390x:*:*:*:*:*:*:*","matchCriteriaId":"778ACA25-ED77-4EFC-A183-DE094C58B268"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:8.0_ppc64le:*:*:*:*:*:*:*","matchCriteriaId":"23D471AC-7DCA-4425-AD91-E5D928753A8C"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:9.0_ppc64le:*:*:*:*:*:*:*","matchCriteriaId":"E07C1C58-0E5F-4B56-9B8D-5DE67DB00F79"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:9.6_ppc64le:*:*:*:*:*:*:*","matchCriteriaId":"0516993E-CBD5-44F1-8684-7172C9ABFD0A"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:9.6:*:*:*:*:*:*:*","matchCriteriaId":"0FDD919E-B7FE-4EC5-8D6B-EC9A4723D6E2"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:9.6_ppc64le:*:*:*:*:*:*:*","matchCriteriaId":"41F1A2F3-BCEF-4A8C-BA2F-DF1FF13E6179"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_update_services_for_sap_solutions:9.6:*:*:*:*:*:*:*","matchCriteriaId":"554AA8CA-A930-4788-B052-497E09D48381"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:archlinux:arch_linux:-:*:*:*:*:*:*:*","matchCriteriaId":"4824AE2D-462B-477D-9206-3E2090A32146"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:gentoo:linux:-:*:*:*:*:*:*:*","matchCriteriaId":"92121D8A-529E-454A-BC8D-B6E0017E615D"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:nixos:nixos:*:*:*:*:*:*:*:*","versionEndExcluding":"24.11","matchCriteriaId":"213883D5-9E62-4496-82E3-D5377995C257"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:novell:suse_linux:-:*:*:*:*:*:*:*","matchCriteriaId":"B627E2A9-DE93-43FB-BFB7-5B6F421554D5"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:tritondatacenter:smartos:*:*:*:*:*:*:*:*","versionEndExcluding":"20250123","matchCriteriaId":"8EBD774C-F48F-45EC-A5DD-B1E56E54EF71"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:almalinux:almalinux:8.0:-:*:*:*:*:*:*","matchCriteriaId":"F34AA7F4-6ECE-4FA5-A310-3509648BD7C7"},{"vulnerable":true,"criteria":"cpe:2.3:o:almalinux:almalinux:9.0:-:*:*:*:*:*:*","matchCriteriaId":"57B93E9A-1483-4FF7-BF45-BD0D7D9F1747"},{"vulnerable":true,"criteria":"cpe:2.3:o:almalinux:almalinux:10.0:-:*:*:*:*:*:*","matchCriteriaId":"66FD02F3-C1C2-4E1D-98C1-8889004437D4"}]}]}],"references":[{"url":"https://access.redhat.com/errata/RHBA-2025:6470","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/errata/RHSA-2025:2600","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2025:7050","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2025:8385","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/security/cve/CVE-2024-12088","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2330676","source":"secalert@redhat.com","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://kb.cert.org/vuls/id/952657","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2025/01/msg00008.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20250131-0002/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.kb.cert.org/vuls/id/952657","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://github.com/google/security-research/security/advisories/GHSA-p5pg-x43v-mvqj","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2024-12747","sourceIdentifier":"secalert@redhat.com","published":"2025-01-14T18:15:25.830","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in rsync. This vulnerability arises from a race condition during rsync's handling of symbolic links. Rsync's default behavior when encountering symbolic links is to skip them. If an attacker replaced a regular file with a symbolic link at the right time, it was possible to bypass the default behavior and traverse symbolic links. Depending on the privileges of the rsync process, an attacker could leak sensitive information, potentially leading to privilege escalation."},{"lang":"es","value":"Se encontró un fallo en rsync. Esta vulnerabilidad surge de una condición de ejecución durante la gestión de enlaces simbólicos por parte de rsync. El comportamiento predeterminado de rsync cuando encuentra enlaces simbólicos es omitirlos. Si un atacante reemplazaba un archivo normal con un enlace simbólico en el momento adecuado, era posible omitir el comportamiento predeterminado y atravesar los enlaces simbólicos. Según los privilegios del proceso rsync, un atacante podría filtrar información confidencial, lo que podría llevar a una escalada de privilegios."}],"metrics":{"cvssMetricV31":[{"source":"secalert@redhat.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N","baseScore":5.6,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.1,"impactScore":4.0}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Secondary","description":[{"lang":"en","value":"CWE-362"}]}],"references":[{"url":"https://access.redhat.com/errata/RHBA-2025:6470","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/errata/RHSA-2025:2600","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/errata/RHSA-2025:7050","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/errata/RHSA-2025:8385","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/security/cve/CVE-2024-12747","source":"secalert@redhat.com"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2332968","source":"secalert@redhat.com"},{"url":"https://kb.cert.org/vuls/id/952657","source":"secalert@redhat.com"},{"url":"https://lists.debian.org/debian-lts-announce/2025/01/msg00008.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20250131-0002/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.kb.cert.org/vuls/id/952657","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2024-12084","sourceIdentifier":"secalert@redhat.com","published":"2025-01-15T15:15:10.537","lastModified":"2025-11-03T22:16:38.910","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper handling of attacker-controlled checksum lengths (s2length) in the code. When MAX_DIGEST_LEN exceeds the fixed SUM_LENGTH (16 bytes), an attacker can write out of bounds in the sum2 buffer."},{"lang":"es","value":"Se encontró un fallo de desbordamiento de búfer basado en montón en rsync daemon. Este problema se debe a una gestión inadecuada de las longitudes de suma de comprobación controladas por el atacante (s2length) en el código. Cuando MAX_DIGEST_LEN excede el valor fijo SUM_LENGTH (16 bytes), un atacante puede escribir fuera de los límites en el búfer de sum2."}],"metrics":{"cvssMetricV31":[{"source":"secalert@redhat.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Secondary","description":[{"lang":"en","value":"CWE-122"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-787"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.2.7:-:*:*:*:*:*:*","matchCriteriaId":"68EE0770-DDA7-4DF1-8605-48FF14BE3E94"},{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:3.3.0:-:*:*:*:*:*:*","matchCriteriaId":"F51AFAF2-4D1D-4827-942D-2004648B01FA"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:almalinux:almalinux:10.0:-:*:*:*:*:*:*","matchCriteriaId":"66FD02F3-C1C2-4E1D-98C1-8889004437D4"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:archlinux:arch_linux:-:*:*:*:*:*:*:*","matchCriteriaId":"4824AE2D-462B-477D-9206-3E2090A32146"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:gentoo:linux:-:*:*:*:*:*:*:*","matchCriteriaId":"92121D8A-529E-454A-BC8D-B6E0017E615D"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:nixos:nixos:*:*:*:*:*:*:*:*","versionEndExcluding":"24.11","matchCriteriaId":"213883D5-9E62-4496-82E3-D5377995C257"},{"vulnerable":true,"criteria":"cpe:2.3:o:nixos:nixos:24.11:*:*:*:*:*:*:*","matchCriteriaId":"0645D7C7-C292-4C57-A8F9-D2F507A7C4D8"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:novell:suse_linux:-:*:*:*:*:*:*:*","matchCriteriaId":"B627E2A9-DE93-43FB-BFB7-5B6F421554D5"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:tritondatacenter:smartos:*:*:*:*:*:*:*:*","versionEndExcluding":"20250123","matchCriteriaId":"8EBD774C-F48F-45EC-A5DD-B1E56E54EF71"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"D65C2163-CFC2-4ABB-8F4E-CB09CEBD006C"}]}]}],"references":[{"url":"https://access.redhat.com/errata/RHBA-2025:6470","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/security/cve/CVE-2024-12084","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2330527","source":"secalert@redhat.com","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://kb.cert.org/vuls/id/952657","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2025/01/14/6","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20250131-0002/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.kb.cert.org/vuls/id/952657","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://github.com/google/security-research/security/advisories/GHSA-p5pg-x43v-mvqj","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Exploit","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2021-3978","sourceIdentifier":"cna@cloudflare.com","published":"2025-01-29T10:15:07.750","lastModified":"2025-07-29T23:40:21.880","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"When copying files with rsync, octorpki uses the \"-a\" flag 0, which forces rsync to copy binaries with the suid bit set as root. Since the provided service definition defaults to root ( https://github.com/cloudflare/cfrpki/blob/master/package/octorpki.service ) this could allow for a vector, when combined with another vulnerability that causes octorpki to process a malicious TAL file, for a local privilege escalation."},{"lang":"es","value":"Al copiar archivos con rsync, octorpki utiliza el indicador \"-a\" 0, que obliga a rsync a copiar binarios con el bit suid establecido como root. Dado que la definición de servicio proporcionada tiene como valor predeterminado root (https://github.com/cloudflare/cfrpki/blob/master/package/octorpki.service), esto podría permitir un vector, cuando se combina con otra vulnerabilidad que hace que octorpki procese un archivo TAL malicioso, para una escalada de privilegios local."}],"metrics":{"cvssMetricV31":[{"source":"cna@cloudflare.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":0.8,"impactScore":6.0},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"cna@cloudflare.com","type":"Secondary","description":[{"lang":"en","value":"CWE-269"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:cloudflare:octorpki:*:*:*:*:*:*:*:*","versionEndExcluding":"1.4.2","matchCriteriaId":"76835CC2-1E72-4632-9904-26EE9A5B2BDF"}]}]}],"references":[{"url":"https://github.com/cloudflare/cfrpki/security/advisories/GHSA-3pqh-p72c-fj85","source":"cna@cloudflare.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2024-35177","sourceIdentifier":"security-advisories@github.com","published":"2025-02-03T22:15:27.600","lastModified":"2025-09-16T17:18:46.207","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Wazuh is a free and open source platform used for threat prevention, detection, and response. It is capable of protecting workloads across on-premises, virtualized, containerized, and cloud-based environments. The wazuh-agent for Windows is vulnerable to a Local Privilege Escalation vulnerability due to improper ACL of the non-default installation directory. A local malicious user could potentially exploit this vulnerability by placing one of the many DLL that are loaded and not present on the system in the installation folder of the agent OR by replacing the service executable binary itself with a malicious one. The root cause is an improper ACL applied on the installation folder when a non-default installation path is specified (e.g,: C:\\wazuh). Many DLLs are loaded from the installation folder and by creating a malicious DLLs that exports the functions of a legit one (and that is not found on the system where the agent is installed, such as rsync.dll) it is possible to escalate privileges from a low-privileged user and obtain code execution under the context of NT AUTHORITY\\SYSTEM. This issue has been addressed in version 4.9.0 and all users are advised to upgrade. There are no known workarounds for this vulnerability."},{"lang":"es","value":"Wazuh es una plataforma gratuita y de código abierto que se utiliza para la prevención, detección y respuesta ante amenazas. Es capaz de proteger cargas de trabajo en entornos locales, virtualizados, en contenedores y basados ??en la nube. El agente wazuh para Windows es vulnerable a una vulnerabilidad de escalada de privilegios locales debido a una ACL incorrecta del directorio de instalación no predeterminado. Un usuario malintencionado local podría explotar esta vulnerabilidad colocando una de las muchas DLL que están cargadas y no están presentes en sistema en la carpeta de instalación del agente O reemplazando el binario ejecutable del servicio por uno malintencionado. La causa principal es una ACL incorrecta aplicada en la carpeta de instalación cuando se especifica una ruta de instalación no predeterminada (p. ej., C:\\wazuh). Muchas DLL se cargan desde la carpeta de instalación y, al crear una DLL maliciosa que exporta las funciones de una legítima (y que no se encuentra en el directorio sistema donde está instalado el agente, como rsync.dll), es posible escalar privilegios de un usuario con pocos privilegios y obtener la ejecución de código en el contexto de NT AUsistemaY\\SYSTEM. Este problema se ha solucionado en la versión 4.9.0 y se recomienda a todos los usuarios que actualicen. No se conocen workarounds para esta vulnerabilidad."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:wazuh:wazuh:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0.0","versionEndExcluding":"4.9.0","matchCriteriaId":"2C44B1C4-5B93-48AA-9FCB-98D99E55D6CD"}]}]}],"references":[{"url":"https://github.com/wazuh/wazuh/security/advisories/GHSA-pmr2-2r83-h3cv","source":"security-advisories@github.com","tags":["Exploit","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2025-24366","sourceIdentifier":"security-advisories@github.com","published":"2025-02-07T22:15:14.463","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"SFTPGo is an open source, event-driven file transfer solution. SFTPGo supports execution of a defined set of commands via SSH. Besides a set of default commands some optional commands can be activated, one of them being `rsync`. It is disabled in the default configuration and it is limited to the local filesystem, it does not work with cloud/remote storage backends. Due to missing sanitization of the client provided `rsync` command, an authenticated remote user can use some options of the rsync command to read or write files with the permissions of the SFTPGo server process. This issue was fixed in version v2.6.5 by checking the client provided arguments. Users are advised to upgrade. There are no known workarounds for this vulnerability."},{"lang":"es","value":"SFTPGo es una solución de transferencia de archivos basada en eventos y de código abierto. SFTPGo admite la ejecución de un conjunto definido de comandos a través de SSH. Además de un conjunto de comandos predeterminados, se pueden activar algunos comandos opcionales, uno de ellos es `rsync`. Está deshabilitado en la configuración predeterminada y está limitado al sistema de archivos local; no funciona con backends de almacenamiento remoto o en la nube. Debido a la falta de depuración del comando `rsync` proporcionado por el cliente, un usuario remoto autenticado puede usar algunas opciones del comando rsync para leer o escribir archivos con los permisos del proceso del servidor SFTPGo. Este problema se solucionó en la versión v2.6.5 al verificar los argumentos proporcionados por el cliente. Se recomienda a los usuarios que actualicen. No existen workarounds para esta vulnerabilidad."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://github.com/drakkan/sftpgo/commit/b347ab6051f6c501da205c09315fe99cd1fa3ba1","source":"security-advisories@github.com"},{"url":"https://github.com/drakkan/sftpgo/security/advisories/GHSA-vj7w-3m8c-6vpx","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2025-10158","sourceIdentifier":"cve@rapid7.com","published":"2025-11-18T15:16:25.433","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array index. The \n\nmalicious \n\nrsync client requires at least read access to the remote rsync module in order to trigger the issue."}],"metrics":{"cvssMetricV31":[{"source":"cve@rapid7.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"cve@rapid7.com","type":"Secondary","description":[{"lang":"en","value":"CWE-129"}]}],"references":[{"url":"https://attackerkb.com/assessments/fbacb2a6-d1cd-4011-bb3a-f06b1c8306b1","source":"cve@rapid7.com"},{"url":"https://github.com/RsyncProject/rsync/commit/797e17fc4a6f15e3b1756538a9f812b63942686f","source":"cve@rapid7.com"}]}},{"cve":{"id":"CVE-2026-33478","sourceIdentifier":"security-advisories@github.com","published":"2026-03-23T15:16:34.063","lastModified":"2026-03-24T18:51:55.653","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"WWBN AVideo is an open source video platform. In versions up to and including 26.0, multiple vulnerabilities in AVideo's CloneSite plugin chain together to allow a completely unauthenticated attacker to achieve remote code execution. The `clones.json.php` endpoint exposes clone secret keys without authentication, which can be used to trigger a full database dump via `cloneServer.json.php`. The dump contains admin password hashes stored as MD5, which are trivially crackable. With admin access, the attacker exploits an OS command injection in the rsync command construction in `cloneClient.json.php` to execute arbitrary system commands. Commit c85d076375fab095a14170df7ddb27058134d38c contains a patch."},{"lang":"es","value":"WWBN AVideo es una plataforma de video de código abierto. En versiones hasta la 26.0 inclusive, múltiples vulnerabilidades en el plugin CloneSite de AVideo se encadenan para permitir a un atacante completamente no autenticado lograr la ejecución remota de código. El endpoint 'clones.json.php' expone claves secretas de clonación sin autenticación, lo que puede usarse para desencadenar un volcado completo de la base de datos a través de 'cloneServer.json.php'. El volcado contiene hashes de contraseñas de administrador almacenados como MD5, que son trivialmente descifrables. Con acceso de administrador, el atacante explota una inyección de comandos del sistema operativo en la construcción del comando rsync en 'cloneClient.json.php' para ejecutar comandos de sistema arbitrarios. El commit c85d076375fab095a14170df7ddb27058134d38c contiene un parche."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H","baseScore":10.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":6.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-78"},{"lang":"en","value":"CWE-284"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:wwbn:avideo:*:*:*:*:*:*:*:*","versionEndIncluding":"26.0","matchCriteriaId":"774C24F1-9D26-484F-B931-1DA107C8F588"}]}]}],"references":[{"url":"https://github.com/WWBN/AVideo/commit/c85d076375fab095a14170df7ddb27058134d38c","source":"security-advisories@github.com","tags":["Patch"]},{"url":"https://github.com/WWBN/AVideo/security/advisories/GHSA-687q-32c6-8x68","source":"security-advisories@github.com","tags":["Exploit","Mitigation","Vendor Advisory"]},{"url":"https://github.com/WWBN/AVideo/security/advisories/GHSA-687q-32c6-8x68","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Exploit","Mitigation","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-41035","sourceIdentifier":"cve@mitre.org","published":"2026-04-16T07:16:31.003","lastModified":"2026-05-21T19:23:51.373","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In rsync 3.0.1 through 3.4.1, receive_xattr relies on an untrusted length value during a qsort call, leading to a receiver use-after-free. The victim must run rsync with -X (aka --xattrs). On Linux, many (but not all) common configurations are vulnerable. Non-Linux platforms are more widely vulnerable."}],"metrics":{"cvssMetricV31":[{"source":"cve@mitre.org","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L","baseScore":7.4,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.1,"impactScore":3.7},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"cve@mitre.org","type":"Secondary","description":[{"lang":"en","value":"CWE-130"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0.1","versionEndIncluding":"3.4.1","matchCriteriaId":"8D9FD7C2-4EA5-4FB6-9B03-CBEF95B5DB20"}]}]}],"references":[{"url":"https://github.com/RsyncProject/rsync/issues/871","source":"cve@mitre.org","tags":["Issue Tracking"]},{"url":"https://github.com/RsyncProject/rsync/releases","source":"cve@mitre.org","tags":["Release Notes"]},{"url":"https://www.openwall.com/lists/oss-security/2026/04/16/2","source":"cve@mitre.org","tags":["Exploit","Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2026/04/16/9","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2026/04/22/3","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-43617","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-20T02:16:36.233","lastModified":"2026-05-21T20:54:29.923","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Rsync version 3.4.2 and prior contain an authorization bypass vulnerability in the rsync daemon's hostname-based access control list enforcement when configured with chroot. Attackers can bypass hostname-based deny rules by controlling the PTR record for their source IP address, allowing connections from hostnames that administrators intended to deny when reverse DNS resolution fails and defaults to UNKNOWN."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N","baseScore":4.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":2.5}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-289"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:*:*:*:*:*:*:*:*","versionEndIncluding":"3.4.2","matchCriteriaId":"EC81F4B6-4EC5-433C-9709-E4B9E340C65A"}]}]}],"references":[{"url":"https://github.com/RsyncProject/rsync/releases/tag/v3.4.3","source":"disclosure@vulncheck.com","tags":["Release Notes"]},{"url":"https://github.com/RsyncProject/rsync/security/advisories/GHSA-rjfm-3w2m-jf4f","source":"disclosure@vulncheck.com","tags":["Vendor Advisory"]},{"url":"https://www.vulncheck.com/advisories/rsync-authorization-bypass-via-hostname-resolution","source":"disclosure@vulncheck.com","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-43618","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-20T02:16:36.410","lastModified":"2026-05-21T20:34:38.070","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Rsync version 3.4.2 and prior contain an integer overflow vulnerability in the compressed-token decoder where a 32-bit signed counter is not checked for overflow, allowing a malicious sender to trigger an overflow that causes the receiver process to read and return data from outside the intended buffer bounds. Attackers can exploit this vulnerability to disclose process memory contents including environment variables, passwords, heap and stack data, and library memory pointers, significantly reducing ASLR effectiveness and facilitating further exploitation."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.2}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-125"},{"lang":"en","value":"CWE-190"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:*:*:*:*:*:*:*:*","versionEndIncluding":"3.4.2","matchCriteriaId":"EC81F4B6-4EC5-433C-9709-E4B9E340C65A"}]}]}],"references":[{"url":"https://github.com/RsyncProject/rsync/releases/tag/v3.4.3","source":"disclosure@vulncheck.com","tags":["Release Notes"]},{"url":"https://github.com/RsyncProject/rsync/security/advisories/GHSA-g37v-g3gj-pmwq","source":"disclosure@vulncheck.com","tags":["Vendor Advisory"]},{"url":"https://www.vulncheck.com/advisories/rsync-integer-overflow-information-disclosure","source":"disclosure@vulncheck.com","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-43619","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-20T02:16:36.577","lastModified":"2026-05-21T20:42:47.623","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Rsync version 3.4.2 and prior contain symlink race condition vulnerabilities in path-based system calls including chmod, lchown, utimes, rename, unlink, mkdir, symlink, mknod, link, rmdir, and lstat that allow local attackers to redirect operations to files outside the exported rsync module. Attackers with local filesystem access can exploit the timing window between path resolution and syscall execution by swapping symlinks to apply sender-supplied permissions, ownership, timestamps, or filenames to arbitrary files outside the intended module boundary on rsync daemons configured with 'use chroot = no'."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.2,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"HIGH","attackRequirements":"PRESENT","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":1.0,"impactScore":5.2}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-59"},{"lang":"en","value":"CWE-367"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:*:*:*:*:*:*:*:*","versionEndIncluding":"3.4.2","matchCriteriaId":"EC81F4B6-4EC5-433C-9709-E4B9E340C65A"}]}]}],"references":[{"url":"https://github.com/RsyncProject/rsync/releases/tag/v3.4.3","source":"disclosure@vulncheck.com","tags":["Release Notes"]},{"url":"https://github.com/RsyncProject/rsync/security/advisories/GHSA-4h9m-w5ff-j735","source":"disclosure@vulncheck.com","tags":["Vendor Advisory"]},{"url":"https://www.vulncheck.com/advisories/rsync-symlink-race-condition-via-path-based-syscalls","source":"disclosure@vulncheck.com","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-43620","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-20T02:16:36.727","lastModified":"2026-05-21T20:47:19.210","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Rsync version 3.4.2 and prior contain a receiver-side out-of-bounds array read vulnerability in recv_files() in receiver.c that allows a malicious rsync server to crash the rsync client process. Attackers can exploit the vulnerability by setting CF_INC_RECURSE in compatibility flags and sending a specially crafted file list where the first sorted entry is not the leading dot directory, followed by a transfer record with ndx=0 and an iflag word without ITEM_TRANSFER, causing the receiver to read 8 bytes before the allocated pointer array and dereference an invalid pointer at an unmapped address, resulting in a deterministic SIGSEGV crash of the rsync client."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"ACTIVE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-125"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:*:*:*:*:*:*:*:*","versionEndIncluding":"3.4.2","matchCriteriaId":"EC81F4B6-4EC5-433C-9709-E4B9E340C65A"}]}]}],"references":[{"url":"https://github.com/RsyncProject/rsync/releases/tag/v3.4.3","source":"disclosure@vulncheck.com","tags":["Release Notes"]},{"url":"https://github.com/RsyncProject/rsync/security/advisories/GHSA-28pw-r563-rxvm","source":"disclosure@vulncheck.com","tags":["Vendor Advisory"]},{"url":"https://www.vulncheck.com/advisories/rsync-out-of-bounds-array-read-via-recv-files","source":"disclosure@vulncheck.com","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-45232","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-20T02:16:36.887","lastModified":"2026-05-21T20:52:56.780","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Rsync versions before 3.4.3 contain an off-by-one out-of-bounds stack write vulnerability in the establish_proxy_connection() function in socket.c that allows network attackers to corrupt stack memory by sending a malformed HTTP proxy response. Attackers can exploit this by positioning themselves between the client and proxy or controlling the proxy server to send a response line of 1023 or more bytes without a newline terminator, causing a null byte to be written to an out-of-bounds stack address when the RSYNC_PROXY environment variable is set."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"ACTIVE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L","baseScore":3.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":1.6,"impactScore":1.4},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L","baseScore":3.7,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":2.2,"impactScore":1.4}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Primary","description":[{"lang":"en","value":"CWE-193"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:*:*:*:*:*:*:*:*","versionEndExcluding":"3.4.3","matchCriteriaId":"BBA148E3-868F-4A1F-AAD0-16FE15A265DC"}]}]}],"references":[{"url":"https://github.com/RsyncProject/rsync/releases/tag/v3.4.3","source":"disclosure@vulncheck.com","tags":["Release Notes"]},{"url":"https://github.com/RsyncProject/rsync/security/advisories/GHSA-8f85-j2cv-59m8","source":"disclosure@vulncheck.com","tags":["Vendor Advisory"]},{"url":"https://www.vulncheck.com/advisories/rsync-off-by-one-stack-write-via-http-proxy","source":"disclosure@vulncheck.com","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-29518","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-20T13:16:17.040","lastModified":"2026-05-26T16:16:23.213","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Rsync versions before 3.4.3 contain a time-of-check to time-of-use (TOCTOU) race condition in daemon file handling that allows attackers to redirect file writes outside intended directories by replacing parent directory components with symbolic links. Attackers with write access to a module path can exploit this race condition to create or overwrite arbitrary files, potentially modifying sensitive system files and achieving privilege escalation when the daemon runs with elevated privileges. This vulnerability can only be triggered if the chroot setting is false."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"HIGH","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.0,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.0,"impactScore":5.9}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Secondary","description":[{"lang":"en","value":"CWE-367"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samba:rsync:*:*:*:*:*:*:*:*","versionEndExcluding":"3.4.3","matchCriteriaId":"BBA148E3-868F-4A1F-AAD0-16FE15A265DC"}]}]}],"references":[{"url":"https://github.com/RsyncProject/rsync/pull/895/changes/8471fdd1561049ef5f58df44a1811a50bd9a531d","source":"disclosure@vulncheck.com","tags":["Patch"]},{"url":"https://github.com/RsyncProject/rsync/releases/tag/v3.4.3","source":"disclosure@vulncheck.com","tags":["Release Notes"]},{"url":"https://michael.stapelberg.ch/posts/2026-05-24-minimal-memory-safe-go-rsync-vulns/","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/rsync-toctou-race-condition-allows-symlink-based-arbitrary-file-write","source":"disclosure@vulncheck.com","tags":["Third Party Advisory"]}]}}]}