| CVE-2024-12747 |
Medium |
Yes |
Privilege escalation |
A flaw was found in rsync. This vulnerability arises from a race condition during rsync's handling of symbolic links. Rsync's default behavior when... |
| CVE-2024-12088 |
High |
Yes |
Arbitrary file upload |
A flaw was found in rsync. When using the --safe-links option, rsync fails to properly verify if a symbolic link destination contains another symbolic link... |
| CVE-2024-12087 |
High |
Yes |
Arbitrary file upload |
A path traversal vulnerability exists in rsync. It stems from behavior enabled by the --inc-recursive option, a default-enabled option for many client... |
| CVE-2024-12086 |
Medium |
Yes |
Information disclosure |
A flaw was found in rsync. It could allow a server to enumerate the contents of an arbitrary file from the client's machine. This issue occurs when files... |
| CVE-2024-12085 |
High |
Yes |
Information disclosure |
A flaw was found in the rsync daemon which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum... |
| CVE-2024-12084 |
Critical |
Yes |
Arbitrary code execution |
A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper handling of attacker-controlled checksum lengths (s2length)... |