Количество 16
Количество 16
GHSA-5jgp-wh79-75wg
An issue was discovered in rsync before 3.2.5 that allows malicious remote servers to write arbitrary files inside the directories of connecting peers. The server chooses which files/directories are sent to the client. However, the rsync client performs insufficient validation of file names. A malicious rsync server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the rsync client target directory and subdirectories (for example, overwrite the .ssh/authorized_keys file).
CVE-2022-29154
An issue was discovered in rsync before 3.2.5 that allows malicious remote servers to write arbitrary files inside the directories of connecting peers. The server chooses which files/directories are sent to the client. However, the rsync client performs insufficient validation of file names. A malicious rsync server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the rsync client target directory and subdirectories (for example, overwrite the .ssh/authorized_keys file).
CVE-2022-29154
An issue was discovered in rsync before 3.2.5 that allows malicious remote servers to write arbitrary files inside the directories of connecting peers. The server chooses which files/directories are sent to the client. However, the rsync client performs insufficient validation of file names. A malicious rsync server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the rsync client target directory and subdirectories (for example, overwrite the .ssh/authorized_keys file).
CVE-2022-29154
An issue was discovered in rsync before 3.2.5 that allows malicious remote servers to write arbitrary files inside the directories of connecting peers. The server chooses which files/directories are sent to the client. However, the rsync client performs insufficient validation of file names. A malicious rsync server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the rsync client target directory and subdirectories (for example, overwrite the .ssh/authorized_keys file).
CVE-2022-29154
An issue was discovered in rsync before 3.2.5 that allows malicious remote servers to write arbitrary files inside the directories of connecting peers. The server chooses which files/directories are sent to the client. However the rsync client performs insufficient validation of file names. A malicious rsync server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the rsync client target directory and subdirectories (for example overwrite the .ssh/authorized_keys file).
CVE-2022-29154
An issue was discovered in rsync before 3.2.5 that allows malicious re ...
SUSE-SU-2022:2959-1
Security update for rsync
SUSE-SU-2022:2859-1
Security update for rsync
SUSE-SU-2022:2858-1
Security update for rsync
SUSE-SU-2022:2825-1
Security update for rsync
ELSA-2022-6181
ELSA-2022-6181: rsync security update (IMPORTANT)
ELSA-2022-6180
ELSA-2022-6180: rsync security update (IMPORTANT)
ELSA-2022-6170
ELSA-2022-6170: rsync security update (IMPORTANT)
BDU:2022-05498
Уязвимость утилиты для передачи и синхронизации файлов Rsync, связанная с ошибками авторизации, позволяющая нарушителю записывать произвольные файлы
SUSE-RU-2023:3370-1
Recommended update for rsync
ROS-20221216-02
Уязвимость Rsync
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-5jgp-wh79-75wg An issue was discovered in rsync before 3.2.5 that allows malicious remote servers to write arbitrary files inside the directories of connecting peers. The server chooses which files/directories are sent to the client. However, the rsync client performs insufficient validation of file names. A malicious rsync server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the rsync client target directory and subdirectories (for example, overwrite the .ssh/authorized_keys file). | CVSS3: 7.4 | 0% Низкий | больше 3 лет назад |
 | CVE-2022-29154 An issue was discovered in rsync before 3.2.5 that allows malicious remote servers to write arbitrary files inside the directories of connecting peers. The server chooses which files/directories are sent to the client. However, the rsync client performs insufficient validation of file names. A malicious rsync server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the rsync client target directory and subdirectories (for example, overwrite the .ssh/authorized_keys file). | CVSS3: 7.4 | 0% Низкий | больше 3 лет назад |
 | CVE-2022-29154 An issue was discovered in rsync before 3.2.5 that allows malicious remote servers to write arbitrary files inside the directories of connecting peers. The server chooses which files/directories are sent to the client. However, the rsync client performs insufficient validation of file names. A malicious rsync server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the rsync client target directory and subdirectories (for example, overwrite the .ssh/authorized_keys file). | CVSS3: 7.4 | 0% Низкий | больше 3 лет назад |
 | CVE-2022-29154 An issue was discovered in rsync before 3.2.5 that allows malicious remote servers to write arbitrary files inside the directories of connecting peers. The server chooses which files/directories are sent to the client. However, the rsync client performs insufficient validation of file names. A malicious rsync server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the rsync client target directory and subdirectories (for example, overwrite the .ssh/authorized_keys file). | CVSS3: 7.4 | 0% Низкий | больше 3 лет назад |
 | CVE-2022-29154 An issue was discovered in rsync before 3.2.5 that allows malicious remote servers to write arbitrary files inside the directories of connecting peers. The server chooses which files/directories are sent to the client. However the rsync client performs insufficient validation of file names. A malicious rsync server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the rsync client target directory and subdirectories (for example overwrite the .ssh/authorized_keys file). | CVSS3: 7.4 | 0% Низкий | больше 3 лет назад |
| CVE-2022-29154 An issue was discovered in rsync before 3.2.5 that allows malicious re ... | CVSS3: 7.4 | 0% Низкий | больше 3 лет назад |
 | SUSE-SU-2022:2959-1 Security update for rsync | 0% Низкий | больше 3 лет назад | |
| SUSE-SU-2022:2859-1 Security update for rsync | 0% Низкий | больше 3 лет назад | |
| SUSE-SU-2022:2858-1 Security update for rsync | 0% Низкий | больше 3 лет назад | |
| SUSE-SU-2022:2825-1 Security update for rsync | 0% Низкий | больше 3 лет назад | |
| ELSA-2022-6181 ELSA-2022-6181: rsync security update (IMPORTANT) | больше 3 лет назад | ||
| ELSA-2022-6180 ELSA-2022-6180: rsync security update (IMPORTANT) | больше 3 лет назад | ||
| ELSA-2022-6170 ELSA-2022-6170: rsync security update (IMPORTANT) | больше 3 лет назад | ||
 | BDU:2022-05498 Уязвимость утилиты для передачи и синхронизации файлов Rsync, связанная с ошибками авторизации, позволяющая нарушителю записывать произвольные файлы | CVSS3: 7.4 | 0% Низкий | больше 3 лет назад |
| SUSE-RU-2023:3370-1 Recommended update for rsync | больше 2 лет назад | ||
 | ROS-20221216-02 Уязвимость Rsync | CVSS3: 7.4 | 0% Низкий | почти 3 года назад |
Уязвимостей на страницу