The recv_files function in receiver.c in the daemon in rsync 3.1.2, and 3.1.3-development before 2017-12-03, proceeds with certain file metadata updates before checking for a filename in the daemon_filter_list data structure, which allows remote attackers to bypass intended access restrictions.
CVSS Details
- CVSS 3.0 Base Score: 3.7
- CVSS 3.0 Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N)
Covered by Rapid7
| Product | Vendor Advisory | Solution File | Added | Published |
|---|---|---|---|---|
| Alpine Linux | alpine-linux-upgrade-rsync | Jan 3, 2018 | Dec 6, 2017 | |
| Arch Linux | arch-linux-upgrade-latest | Jul 11, 2025 | Dec 6, 2017 | |
| Debian | debian-upgrade-rsync | Dec 20, 2017 | Dec 5, 2017 | |
| Freebsd | freebsd-upgrade-package-rsync | Dec 20, 2017 | Dec 20, 2017 | |
| Gentoo Linux | gentoo-linux-upgrade-net-misc-rsync | Jan 18, 2018 | Dec 5, 2017 | |
| Huawei Euleros 2_0_sp1 | huawei-euleros-2_0_sp1-upgrade-rsync | Jan 19, 2018 | Dec 5, 2017 | |
| Huawei Euleros 2_0_sp2 | huawei-euleros-2_0_sp2-upgrade-rsync | Jan 19, 2018 | Dec 5, 2017 | |
| Huawei Euleros 2_0_sp5 | huawei-euleros-2_0_sp5-upgrade-rsync | Sep 24, 2019 | Dec 6, 2017 | |
| Huawei Euleros 2_0_sp8 | huawei-euleros-2_0_sp8-upgrade-rsynchuawei-euleros-2_0_sp8-upgrade-rsync-daemon | Jun 27, 2019 | Dec 6, 2017 | |
| Oracle Solaris | oracle-solaris-11-4-upgrade-network-rsync-3-1-3-11-4-3-0-1-3-0 | Nov 19, 2018 | Dec 5, 2017 | |
| Redhat_linux | — | no-fix-redhat-rpm-package | Jul 9, 2025 | Dec 4, 2017 |
| Suse | — | suse-upgrade-rsync | Jan 16, 2018 | Dec 5, 2017 |
| Ubuntu | ubuntu-upgrade-rsync | Dec 7, 2017 | Dec 5, 2017 | |
| Vmware Photon_os | vmware-photon_os_update_tdnf | Jan 20, 2025 | Dec 6, 2017 |
Prioritise with Active Threat Intelligence
With curated Threat Intelligence, you can see which vulnerabilities truly put you at risk, prioritize what matters most, and act before attackers do.
Explore Intelligence Hub