cvelistv5 - cve-2024-12088

cve-2024-12088

Vulnerability from cvelistv5

Published

2025-01-14 17:38

Modified

2025-02-10 12:03

Severity ?

6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Summary

A flaw was found in rsync. When using the `--safe-links` option, the rsync client fails to properly verify if a symbolic link destination sent from the server contains another symbolic link within it. This results in a path traversal vulnerability, which may lead to arbitrary file write outside the desired directory.

References

▼	URL	Tags
	secalert@redhat.com	https://access.redhat.com/security/cve/CVE-2024-12088
	secalert@redhat.com	https://bugzilla.redhat.com/show_bug.cgi?id=2330676
	secalert@redhat.com	https://kb.cert.org/vuls/id/952657

Impacted products

Vendor

Product

Version

▼

Red Hat

Red Hat Enterprise Linux 6

cpe:/o:redhat:enterprise_linux:6

Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat Enterprise Linux 8	cpe:/o:redhat:enterprise_linux:8
Red Hat	Red Hat Enterprise Linux 9	cpe:/o:redhat:enterprise_linux:9
Red Hat	Red Hat OpenShift Container Platform 4	cpe:/a:redhat:openshift:4

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-12088",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-01-15T14:59:33.191547Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-01-15T15:19:12.603Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:6"
          ],
          "defaultStatus": "unknown",
          "packageName": "rsync",
          "product": "Red Hat Enterprise Linux 6",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7"
          ],
          "defaultStatus": "unknown",
          "packageName": "rsync",
          "product": "Red Hat Enterprise Linux 7",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:8"
          ],
          "defaultStatus": "affected",
          "packageName": "rsync",
          "product": "Red Hat Enterprise Linux 8",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:9"
          ],
          "defaultStatus": "affected",
          "packageName": "rsync",
          "product": "Red Hat Enterprise Linux 9",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:openshift:4"
          ],
          "defaultStatus": "affected",
          "packageName": "rhcos",
          "product": "Red Hat OpenShift Container Platform 4",
          "vendor": "Red Hat"
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Red Hat would like to thank Jasiel Spelman (Google), Pedro Gallegos (Google), and Simon Scannell (Google) for reporting this issue."
        }
      ],
      "datePublic": "2025-01-14T15:06:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "A flaw was found in rsync. When using the `--safe-links` option, the rsync client fails to properly verify if a symbolic link destination sent from the server contains another symbolic link within it. This results in a path traversal vulnerability, which may lead to arbitrary file write outside the desired directory."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "namespace": "https://access.redhat.com/security/updates/classification/",
              "value": "Moderate"
            },
            "type": "Red Hat severity rating"
          }
        },
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-35",
              "description": "Path Traversal: \u0027.../...//\u0027",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-02-10T12:03:47.304Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "tags": [
            "vdb-entry",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/security/cve/CVE-2024-12088"
        },
        {
          "name": "RHBZ#2330676",
          "tags": [
            "issue-tracking",
            "x_refsource_REDHAT"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2330676"
        },
        {
          "url": "https://kb.cert.org/vuls/id/952657"
        }
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2024-12-05T21:55:22.700000+00:00",
          "value": "Reported to Red Hat."
        },
        {
          "lang": "en",
          "time": "2025-01-14T15:06:00+00:00",
          "value": "Made public."
        }
      ],
      "title": "Rsync: --safe-links option bypass leads to path traversal",
      "workarounds": [
        {
          "lang": "en",
          "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
        }
      ],
      "x_redhatCweChain": "CWE-35: Path Traversal: \u0027.../...//\u0027"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2024-12088",
    "datePublished": "2025-01-14T17:38:34.890Z",
    "dateReserved": "2024-12-03T08:58:08.307Z",
    "dateUpdated": "2025-02-10T12:03:47.304Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-12088\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2025-01-14T18:15:25.643\",\"lastModified\":\"2025-02-10T12:15:28.537\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A flaw was found in rsync. When using the `--safe-links` option, the rsync client fails to properly verify if a symbolic link destination sent from the server contains another symbolic link within it. This results in a path traversal vulnerability, which may lead to arbitrary file write outside the desired directory.\"},{\"lang\":\"es\",\"value\":\"Se encontr\u00f3 un fallo en rsync. Al usar la opci\u00f3n `--safe-links`, rsync no verifica correctamente si un destino de enlace simb\u00f3lico contiene otro enlace simb\u00f3lico dentro de \u00e9l. Esto genera una vulnerabilidad de Path Traversal, que puede provocar la escritura arbitraria de archivos fuera del directorio deseado.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-35\"}]}],\"references\":[{\"url\":\"https://access.redhat.com/security/cve/CVE-2024-12088\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2330676\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://kb.cert.org/vuls/id/952657\",\"source\":\"secalert@redhat.com\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-12088\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-01-15T14:59:33.191547Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-01-15T14:59:45.502Z\"}}], \"cna\": {\"title\": \"Rsync: --safe-links option bypass leads to path traversal\", \"credits\": [{\"lang\": \"en\", \"value\": \"Red Hat would like to thank Jasiel Spelman (Google), Pedro Gallegos (Google), and Simon Scannell (Google) for reporting this issue.\"}], \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Moderate\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}, {\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 6.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"cpes\": [\"cpe:/o:redhat:enterprise_linux:6\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 6\", \"packageName\": \"rsync\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"packageName\": \"rsync\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"rsync\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"packageName\": \"rsync\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"rhcos\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2024-12-05T21:55:22.700000+00:00\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2025-01-14T15:06:00+00:00\", \"value\": \"Made public.\"}], \"datePublic\": \"2025-01-14T15:06:00.000Z\", \"references\": [{\"url\": \"https://access.redhat.com/security/cve/CVE-2024-12088\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2330676\", \"name\": \"RHBZ#2330676\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://kb.cert.org/vuls/id/952657\"}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A flaw was found in rsync. When using the `--safe-links` option, the rsync client fails to properly verify if a symbolic link destination sent from the server contains another symbolic link within it. This results in a path traversal vulnerability, which may lead to arbitrary file write outside the desired directory.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-35\", \"description\": \"Path Traversal: \u0027.../...//\u0027\"}]}], \"providerMetadata\": {\"orgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"shortName\": \"redhat\", \"dateUpdated\": \"2025-02-10T12:03:47.304Z\"}, \"x_redhatCweChain\": \"CWE-35: Path Traversal: \u0027.../...//\u0027\"}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-12088\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-02-10T12:03:47.304Z\", \"dateReserved\": \"2024-12-03T08:58:08.307Z\", \"assignerOrgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"datePublished\": \"2025-01-14T17:38:34.890Z\", \"assignerShortName\": \"redhat\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

ncsc-2025-0015

Vulnerability from csaf_ncscnl

Published

2025-01-15 07:42

Modified

2025-01-15 07:42

Summary

Kwetsbaarheden verholpen in Rsync

Notes

The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions: NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein. NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory. This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.

Feiten

Rsync Project heeft kwetsbaarheden verholpen in Rsync (versies <3.4.0).

Interpretaties

De meest kritieke kwetsbaarheden in Rsync omvatten een heap-gebaseerde 'buffer overflow' (CVE-2024-12084) en een 'info leak' (CVE-2024-12085) die kunnen leiden tot willekeurige code-executie (aanwezig in Rsync-versies 3.2.7 & 3.3.0). Daarnaast zijn er kwetsbaarheden gerelateerd aan 'path traversal' en onjuiste verificatie van symbolische links, wat kan leiden tot ongeautoriseerde toegang tot gevoelige gegevens en het schrijven van bestanden buiten de bedoelde directory. Deze kwetsbaarheden kunnen worden misbruikt door aanvallers om de beschikbaarheid, integriteit en vertrouwelijkheid in gevaar te brengen. Gezien de bekendheid van Rsync en de brede implementatie verwacht het NCSC op korte termijn PoC code.

Oplossingen

Rsync Project heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.

Kans

medium

Schade

high

CWE-457

Use of Uninitialized Variable

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-122

Heap-based Buffer Overflow

CWE-390

Detection of Error Condition Without Action

CWE-35

Path Traversal: '.../...//'

CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

JSON

To clipboard

{
  "document": {
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE"
      }
    },
    "lang": "nl",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n    NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n    NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n    This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
      },
      {
        "category": "description",
        "text": "Rsync Project heeft kwetsbaarheden verholpen in Rsync (versies \u003c3.4.0).",
        "title": "Feiten"
      },
      {
        "category": "description",
        "text": "De meest kritieke kwetsbaarheden in Rsync omvatten een heap-gebaseerde \u0027buffer overflow\u0027 (CVE-2024-12084) en een \u0027info leak\u0027 (CVE-2024-12085) die kunnen leiden tot willekeurige code-executie (aanwezig in Rsync-versies 3.2.7 \u0026 3.3.0). Daarnaast zijn er kwetsbaarheden gerelateerd aan \u0027path traversal\u0027 en onjuiste verificatie van symbolische links, wat kan leiden tot ongeautoriseerde toegang tot gevoelige gegevens en het schrijven van bestanden buiten de bedoelde directory. Deze kwetsbaarheden kunnen worden misbruikt door aanvallers om de beschikbaarheid, integriteit en vertrouwelijkheid in gevaar te brengen.\n\nGezien de bekendheid van Rsync en de brede implementatie verwacht het NCSC op korte termijn PoC code.",
        "title": "Interpretaties"
      },
      {
        "category": "description",
        "text": "Rsync Project heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
        "title": "Oplossingen"
      },
      {
        "category": "general",
        "text": "medium",
        "title": "Kans"
      },
      {
        "category": "general",
        "text": "high",
        "title": "Schade"
      },
      {
        "category": "general",
        "text": "Use of Uninitialized Variable",
        "title": "CWE-457"
      },
      {
        "category": "general",
        "text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
        "title": "CWE-119"
      },
      {
        "category": "general",
        "text": "Heap-based Buffer Overflow",
        "title": "CWE-122"
      },
      {
        "category": "general",
        "text": "Detection of Error Condition Without Action",
        "title": "CWE-390"
      },
      {
        "category": "general",
        "text": "Path Traversal: \u0027.../...//\u0027",
        "title": "CWE-35"
      },
      {
        "category": "general",
        "text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
        "title": "CWE-362"
      }
    ],
    "publisher": {
      "category": "coordinator",
      "contact_details": "cert@ncsc.nl",
      "name": "Nationaal Cyber Security Centrum",
      "namespace": "https://www.ncsc.nl/"
    },
    "references": [
      {
        "category": "external",
        "summary": "Reference - ncscclear",
        "url": "https://www.kb.cert.org/vuls/id/952657"
      },
      {
        "category": "external",
        "summary": "Reference - ncscclear",
        "url": "https://rsync.samba.org/ftp/rsync/NEWS.html#3.4.0"
      },
      {
        "category": "external",
        "summary": "Reference - ncscclear",
        "url": "https://github.com/RsyncProject/rsync/releases/tag/v3.4.0"
      }
    ],
    "title": "Kwetsbaarheden verholpen in Rsync",
    "tracking": {
      "current_release_date": "2025-01-15T07:42:19.351539Z",
      "id": "NCSC-2025-0015",
      "initial_release_date": "2025-01-15T07:42:19.351539Z",
      "revision_history": [
        {
          "date": "2025-01-15T07:42:19.351539Z",
          "number": "0",
          "summary": "Initiele versie"
        }
      ],
      "status": "final",
      "version": "1.0.0"
    }
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-12084",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "other",
          "text": "Heap-based Buffer Overflow",
          "title": "CWE-122"
        }
      ],
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-12084",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-12084.json"
        }
      ],
      "title": "CVE-2024-12084"
    },
    {
      "cve": "CVE-2024-12085",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
          "title": "CWE-119"
        },
        {
          "category": "other",
          "text": "Use of Uninitialized Variable",
          "title": "CWE-457"
        }
      ],
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-12085",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-12085.json"
        }
      ],
      "title": "CVE-2024-12085"
    },
    {
      "cve": "CVE-2024-12086",
      "cwe": {
        "id": "CWE-390",
        "name": "Detection of Error Condition Without Action"
      },
      "notes": [
        {
          "category": "other",
          "text": "Detection of Error Condition Without Action",
          "title": "CWE-390"
        }
      ],
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-12086",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-12086.json"
        }
      ],
      "title": "CVE-2024-12086"
    },
    {
      "cve": "CVE-2024-12087",
      "cwe": {
        "id": "CWE-35",
        "name": "Path Traversal: \u0027.../...//\u0027"
      },
      "notes": [
        {
          "category": "other",
          "text": "Path Traversal: \u0027.../...//\u0027",
          "title": "CWE-35"
        }
      ],
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-12087",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-12087.json"
        }
      ],
      "title": "CVE-2024-12087"
    },
    {
      "cve": "CVE-2024-12088",
      "cwe": {
        "id": "CWE-35",
        "name": "Path Traversal: \u0027.../...//\u0027"
      },
      "notes": [
        {
          "category": "other",
          "text": "Path Traversal: \u0027.../...//\u0027",
          "title": "CWE-35"
        }
      ],
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-12088",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-12088.json"
        }
      ],
      "title": "CVE-2024-12088"
    },
    {
      "cve": "CVE-2024-12747",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
          "title": "CWE-362"
        }
      ],
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-12747",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-12747.json"
        }
      ],
      "title": "CVE-2024-12747"
    }
  ]
}

wid-sec-w-2025-0084

Vulnerability from csaf_certbund

Published

2025-01-14 23:00

Modified

2025-01-19 23:00

Summary

Rsync: Mehrere Schwachstellen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Rsync ist ein Tool, um Dateien und Verzeichnisse zu synchronisieren.

Angriff

Ein Angreifer kann mehrere Schwachstellen in Rsync ausnutzen, um vertrauliche Informationen preiszugeben, sich erhöhte Rechte zu verschaffen und Daten zu manipulieren.

Betroffene Betriebssysteme

- Sonstiges - UNIX

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Rsync ist ein Tool, um Dateien und Verzeichnisse zu synchronisieren.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in Rsync ausnutzen, um vertrauliche Informationen preiszugeben, sich erh\u00f6hte Rechte zu verschaffen und Daten zu manipulieren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Sonstiges\n- UNIX",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-0084 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0084.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-0084 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0084"
      },
      {
        "category": "external",
        "summary": "VU#952657: Rsync contains six vulnerabilities vom 2025-01-14",
        "url": "https://kb.cert.org/vuls/id/952657"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2025-73C1F25730 vom 2025-01-14",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2025-73c1f25730"
      },
      {
        "category": "external",
        "summary": "Arch Linux Security Advisory ASA-202501-1 vom 2025-01-14",
        "url": "https://security.archlinux.org/ASA-202501-1"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-5843 vom 2025-01-14",
        "url": "https://lists.debian.org/debian-security-announce/2025/msg00004.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-4015 vom 2025-01-14",
        "url": "https://lists.debian.org/debian-lts-announce/2025/01/msg00008.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2025-1954 vom 2025-01-15",
        "url": "https://alas.aws.amazon.com/ALAS-2025-1954.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2025-2730 vom 2025-01-15",
        "url": "https://alas.aws.amazon.com/AL2/ALAS-2025-2730.html"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2025-EC87287710 vom 2025-01-14",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2025-ec87287710"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7206-1 vom 2025-01-14",
        "url": "https://ubuntu.com/security/notices/USN-7206-1"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:0324 vom 2025-01-15",
        "url": "https://access.redhat.com/errata/RHSA-2025:0324"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:0325 vom 2025-01-15",
        "url": "https://access.redhat.com/errata/RHSA-2025:0325"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0118-2 vom 2025-01-15",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/4BRNRPJ3VCRVJMGFGC5EPYWUJTTXNY57/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0121-2 vom 2025-01-15",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020135.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0122-2 vom 2025-01-15",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/FDJSS5UVGBZXCNVBX4FQ77W4TUNRVECV/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0118-2 vom 2025-01-15",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/4BRNRPJ3VCRVJMGFGC5EPYWUJTTXNY57/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0122-2 vom 2025-01-15",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/FDJSS5UVGBZXCNVBX4FQ77W4TUNRVECV/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0118-1 vom 2025-01-15",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020130.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-0325 vom 2025-01-15",
        "url": "https://linux.oracle.com/errata/ELSA-2025-0325.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-0324 vom 2025-01-15",
        "url": "https://linux.oracle.com/errata/ELSA-2025-0324.html"
      },
      {
        "category": "external",
        "summary": "Gentoo Linux Security Advisory GLSA-202501-01 vom 2025-01-15",
        "url": "https://security.gentoo.org/glsa/202501-01"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0122-1 vom 2025-01-15",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020127.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0121-1 vom 2025-01-15",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020128.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0120-1 vom 2025-01-15",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020129.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0120-2 vom 2025-01-15",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020137.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0122-2 vom 2025-01-15",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020136.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2025-2731 vom 2025-01-17",
        "url": "https://alas.aws.amazon.com/AL2/ALAS-2025-2731.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7206-2 vom 2025-01-16",
        "url": "https://ubuntu.com/security/notices/USN-7206-2"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2025-1955 vom 2025-01-17",
        "url": "https://alas.aws.amazon.com/ALAS-2025-1955.html"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2025-3EC637E6E9 vom 2025-01-16",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2025-3ec637e6e9"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0166-1 vom 2025-01-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020167.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0165-1 vom 2025-01-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020168.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0156-1 vom 2025-01-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020160.html"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2025:0325 vom 2025-01-17",
        "url": "https://errata.build.resf.org/RLSA-2025:0325"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0157-1 vom 2025-01-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020159.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Rsync: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-01-19T23:00:00.000+00:00",
      "generator": {
        "date": "2025-01-20T09:18:18.332+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.10"
        }
      },
      "id": "WID-SEC-W-2025-0084",
      "initial_release_date": "2025-01-14T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-01-14T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2025-01-15T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von SUSE, Oracle Linux und Gentoo aufgenommen"
        },
        {
          "date": "2025-01-16T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Amazon, Ubuntu und Fedora aufgenommen"
        },
        {
          "date": "2025-01-19T23:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von SUSE und Rocky Enterprise Software Foundation aufgenommen"
        }
      ],
      "status": "final",
      "version": "4"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Amazon Linux 2",
            "product": {
              "name": "Amazon Linux 2",
              "product_id": "398363",
              "product_identification_helper": {
                "cpe": "cpe:/o:amazon:linux_2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Amazon"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Fedora Linux",
            "product": {
              "name": "Fedora Linux",
              "product_id": "74185",
              "product_identification_helper": {
                "cpe": "cpe:/o:fedoraproject:fedora:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Fedora"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Gentoo Linux",
            "product": {
              "name": "Gentoo Linux",
              "product_id": "T012167",
              "product_identification_helper": {
                "cpe": "cpe:/o:gentoo:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Gentoo"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Open Source Arch Linux",
            "product": {
              "name": "Open Source Arch Linux",
              "product_id": "T013312",
              "product_identification_helper": {
                "cpe": "cpe:/o:archlinux:archlinux:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c3.4.0",
                "product": {
                  "name": "Open Source Rsync \u003c3.4.0",
                  "product_id": "T040198"
                }
              },
              {
                "category": "product_version",
                "name": "3.4.0",
                "product": {
                  "name": "Open Source Rsync 3.4.0",
                  "product_id": "T040198-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:gnu:rsync:3.4.0"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Rsync"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "RESF Rocky Linux",
            "product": {
              "name": "RESF Rocky Linux",
              "product_id": "T032255",
              "product_identification_helper": {
                "cpe": "cpe:/o:resf:rocky_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "RESF"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-12084",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Rsync. Diese Schwachstellen sind auf verschiedene Sicherheitsprobleme zur\u00fcckzuf\u00fchren. unter anderem sind dies eine unsachgem\u00e4\u00dfe Behandlung von Checksummenl\u00e4ngen, ein Path-Traversal-Problem oder unsachgem\u00e4\u00dfe Validierung eines symbolischen Links. Ein Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen, sich erh\u00f6hte Rechte zu verschaffen und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger Schwachstellen erfordert eine Benutzerinteraktion oder der Angreifer muss \u00fcber bestimmte Rechte verf\u00fcgen."
        }
      ],
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T013312",
          "398363",
          "T012167",
          "T004914",
          "T032255",
          "74185",
          "T040198"
        ]
      },
      "release_date": "2025-01-14T23:00:00.000+00:00",
      "title": "CVE-2024-12084"
    },
    {
      "cve": "CVE-2024-12085",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Rsync. Diese Schwachstellen sind auf verschiedene Sicherheitsprobleme zur\u00fcckzuf\u00fchren. unter anderem sind dies eine unsachgem\u00e4\u00dfe Behandlung von Checksummenl\u00e4ngen, ein Path-Traversal-Problem oder unsachgem\u00e4\u00dfe Validierung eines symbolischen Links. Ein Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen, sich erh\u00f6hte Rechte zu verschaffen und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger Schwachstellen erfordert eine Benutzerinteraktion oder der Angreifer muss \u00fcber bestimmte Rechte verf\u00fcgen."
        }
      ],
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T013312",
          "398363",
          "T012167",
          "T004914",
          "T032255",
          "74185",
          "T040198"
        ]
      },
      "release_date": "2025-01-14T23:00:00.000+00:00",
      "title": "CVE-2024-12085"
    },
    {
      "cve": "CVE-2024-12086",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Rsync. Diese Schwachstellen sind auf verschiedene Sicherheitsprobleme zur\u00fcckzuf\u00fchren. unter anderem sind dies eine unsachgem\u00e4\u00dfe Behandlung von Checksummenl\u00e4ngen, ein Path-Traversal-Problem oder unsachgem\u00e4\u00dfe Validierung eines symbolischen Links. Ein Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen, sich erh\u00f6hte Rechte zu verschaffen und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger Schwachstellen erfordert eine Benutzerinteraktion oder der Angreifer muss \u00fcber bestimmte Rechte verf\u00fcgen."
        }
      ],
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T013312",
          "398363",
          "T012167",
          "T004914",
          "T032255",
          "74185",
          "T040198"
        ]
      },
      "release_date": "2025-01-14T23:00:00.000+00:00",
      "title": "CVE-2024-12086"
    },
    {
      "cve": "CVE-2024-12087",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Rsync. Diese Schwachstellen sind auf verschiedene Sicherheitsprobleme zur\u00fcckzuf\u00fchren. unter anderem sind dies eine unsachgem\u00e4\u00dfe Behandlung von Checksummenl\u00e4ngen, ein Path-Traversal-Problem oder unsachgem\u00e4\u00dfe Validierung eines symbolischen Links. Ein Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen, sich erh\u00f6hte Rechte zu verschaffen und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger Schwachstellen erfordert eine Benutzerinteraktion oder der Angreifer muss \u00fcber bestimmte Rechte verf\u00fcgen."
        }
      ],
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T013312",
          "398363",
          "T012167",
          "T004914",
          "T032255",
          "74185",
          "T040198"
        ]
      },
      "release_date": "2025-01-14T23:00:00.000+00:00",
      "title": "CVE-2024-12087"
    },
    {
      "cve": "CVE-2024-12088",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Rsync. Diese Schwachstellen sind auf verschiedene Sicherheitsprobleme zur\u00fcckzuf\u00fchren. unter anderem sind dies eine unsachgem\u00e4\u00dfe Behandlung von Checksummenl\u00e4ngen, ein Path-Traversal-Problem oder unsachgem\u00e4\u00dfe Validierung eines symbolischen Links. Ein Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen, sich erh\u00f6hte Rechte zu verschaffen und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger Schwachstellen erfordert eine Benutzerinteraktion oder der Angreifer muss \u00fcber bestimmte Rechte verf\u00fcgen."
        }
      ],
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T013312",
          "398363",
          "T012167",
          "T004914",
          "T032255",
          "74185",
          "T040198"
        ]
      },
      "release_date": "2025-01-14T23:00:00.000+00:00",
      "title": "CVE-2024-12088"
    },
    {
      "cve": "CVE-2024-12747",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Rsync. Diese Schwachstellen sind auf verschiedene Sicherheitsprobleme zur\u00fcckzuf\u00fchren. unter anderem sind dies eine unsachgem\u00e4\u00dfe Behandlung von Checksummenl\u00e4ngen, ein Path-Traversal-Problem oder unsachgem\u00e4\u00dfe Validierung eines symbolischen Links. Ein Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen, sich erh\u00f6hte Rechte zu verschaffen und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger Schwachstellen erfordert eine Benutzerinteraktion oder der Angreifer muss \u00fcber bestimmte Rechte verf\u00fcgen."
        }
      ],
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T013312",
          "398363",
          "T012167",
          "T004914",
          "T032255",
          "74185",
          "T040198"
        ]
      },
      "release_date": "2025-01-14T23:00:00.000+00:00",
      "title": "CVE-2024-12747"
    }
  ]
}

fkie_cve-2024-12088

Vulnerability from fkie_nvd

Published

2025-01-14 18:15

Modified

2025-02-10 12:15

Severity ?

6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Summary

References

▼	URL	Tags
	secalert@redhat.com	https://access.redhat.com/security/cve/CVE-2024-12088
	secalert@redhat.com	https://bugzilla.redhat.com/show_bug.cgi?id=2330676
	secalert@redhat.com	https://kb.cert.org/vuls/id/952657

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A flaw was found in rsync. When using the `--safe-links` option, the rsync client fails to properly verify if a symbolic link destination sent from the server contains another symbolic link within it. This results in a path traversal vulnerability, which may lead to arbitrary file write outside the desired directory."
    },
    {
      "lang": "es",
      "value": "Se encontr\u00f3 un fallo en rsync. Al usar la opci\u00f3n `--safe-links`, rsync no verifica correctamente si un destino de enlace simb\u00f3lico contiene otro enlace simb\u00f3lico dentro de \u00e9l. Esto genera una vulnerabilidad de Path Traversal, que puede provocar la escritura arbitraria de archivos fuera del directorio deseado."
    }
  ],
  "id": "CVE-2024-12088",
  "lastModified": "2025-02-10T12:15:28.537",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 6.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 3.6,
        "source": "secalert@redhat.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-01-14T18:15:25.643",
  "references": [
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/security/cve/CVE-2024-12088"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2330676"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://kb.cert.org/vuls/id/952657"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Awaiting Analysis",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-35"
        }
      ],
      "source": "secalert@redhat.com",
      "type": "Secondary"
    }
  ]
}

ghsa-ffph-g3pc-8r3g

Vulnerability from github

Published

2025-01-14 18:32

Modified

2025-01-15 00:30

Severity ?

6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Details

A flaw was found in rsync. When using the --safe-links option, rsync fails to properly verify if a symbolic link destination contains another symbolic link within it. This results in a path traversal vulnerability, which may lead to arbitrary file write outside the desired directory.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2024-12088"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-35"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-01-14T18:15:25Z",
    "severity": "MODERATE"
  },
  "details": "A flaw was found in rsync. When using the `--safe-links` option, rsync fails to properly verify if a symbolic link destination contains another symbolic link within it. This results in a path traversal vulnerability, which may lead to arbitrary file write outside the desired directory.",
  "id": "GHSA-ffph-g3pc-8r3g",
  "modified": "2025-01-15T00:30:40Z",
  "published": "2025-01-14T18:32:00Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-12088"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/security/cve/CVE-2024-12088"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2330676"
    },
    {
      "type": "WEB",
      "url": "https://kb.cert.org/vuls/id/952657"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
      "type": "CVSS_V3"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

cve-2024-12088

Vulnerability from cvelistv5

ncsc-2025-0015

Vulnerability from csaf_ncscnl

wid-sec-w-2025-0084

Vulnerability from csaf_certbund

fkie_cve-2024-12088

Vulnerability from fkie_nvd

ghsa-ffph-g3pc-8r3g

Vulnerability from github

Tags

Sightings

Nomenclature