#VU66189 Path traversal in Rsync


Published: 2022-08-08

Vulnerability identifier: #VU66189

Vulnerability risk: Low

CVSSv3.1: 3.8 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-29154

CWE-ID: CWE-22

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Rsync
Server applications / Other server solutions

Vendor: Samba

Description

The vulnerability allows a remote server to perform directory traversal attacks.

The vulnerability exists due to input validation error within the rsync client  when processing file names. A remote malicious server overwrite arbitrary files in the rsync client target directory and subdirectories on the connected peer.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Rsync: 3.2.0 - 3.2.4pre4

External links
http://www.openwall.com/lists/oss-security/2022/08/02/1

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Path traversal in IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data
Multiple vulnerabilities in IBM Cloud Pak for Network Automation
Multiple vulnerabilities in Dell PowerStore Family
Multiple vulnerabilities in IBM Cloud Pak for Watson AIOps
Multiple vulnerabilities in Red Hat OpenShift Data Foundation 4.13
Multiple vulnerabilities in IBM Cloud Pak for Security (CP4S)
Multiple vulnerabilities in IBM Security Guardium
VMware Tanzu products update for rsync
Multiple vulnerabilities in OpenShift Container Platform 4.13
Multiple vulnerabilities in IBM Security Verify Access