#VU102734 Path traversal in Rsync - CVE-2024-12087

Cybersecurity Help s.r.o.

Published: 2025-01-14

Vulnerability identifier: #VU102734

Vulnerability risk: Medium

CVSSv4.0: 2.1 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-12087

CWE-ID: CWE-22

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Rsync
Server applications / Other server solutions

Vendor: Samba

Description

The vulnerability allows a remote server to write files to arbitrary locations on the system.

The vulnerability exists due to input validation error when using "--inc-recursive" option. A remote attacker can can trick the victim into connecting to a rouge rsync server and write arbitrary files to arbitrary locations on the client system.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Rsync: 1.6.4 - 3.3.0pre1

External links
https://seclists.org/oss-sec/2025/q1/16

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

RSA Authentication Manager update for third-party components

Multiple vulnerabilities in Multicluster Engine for Kubernetes 2.6

Multiple vulnerabilities in Multicluster Engine for Kubernetes 2.5

Dell APEX Cloud Platform for Microsoft Azure update for third-party components

Dell APEX Cloud Platform for Red Hat OpenShift update for third-party components

Multiple vulnerabilities in Red Hat OpenShift Container Platform 4.14

Multiple vulnerabilities in Red Hat Advanced Cluster Security for Kubernetes 4.6

Multiple vulnerabilities in Red Hat Advanced Cluster Security for Kubernetes 4.7

Multiple vulnerabilities in Red Hat Advanced Cluster Security for Kubernetes 4.5