CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1024 matches found

OSV•added 2026/05/25 7:34 a.m.•5 views

CLSA-2026-1779694460 Fix CVE(s): CVE-2026-29518

SECURITY UPDATE: daemon-no-chroot TOCTOU symlink race - debian/patches/CVE-2026-29518.patch: track per-module chroot in amchrooted and usesecuresymlinks; route the sender's read-path open, the receiver's basis-file open, mkstemp, and inplace write through securerelativeopen / securemkstemp -...

7.3CVSS5.8AI score0.00147EPSS

Exploits0References1

Tenable Nessus•added 2026/05/25 12:0 a.m.•11 views

Linux Distros Unpatched Vulnerability : CVE-2026-44933

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PluginScript attempts to chroot the plugin to the repoManagerRoot, this root is frequently / the system root in standard configurations or when using --root. If...

8.5CVSS5.9AI score0.00214EPSS

Exploits0References2

RedhatCVE•added 2026/05/22 1:11 p.m.•4 views

CVE-2026-29518

A flaw was found in rsync. An rsync daemon configured with "use chroot = no" is exposed to a time-of-check / time-of-use race on parent path components. A local attacker with write access to a module can replace a parent directory component with a symlink between the receiver's check and its open...

7.8CVSS5.7AI score0.00147EPSS

Exploits0References3

RedhatCVE•added 2026/05/22 1:6 p.m.•8 views

CVE-2026-43617

A flaw was found in rsync. When an rsync daemon is configured with "daemon chroot = /X" and uses hostname-based access control lists ACLs, and the chrooted directory /X lacks necessary DNS resolution files, a remote attacker can bypass hostname-based deny rules. This occurs because the daemon...

6.3CVSS5.8AI score0.00292EPSS

Exploits0References3

RedhatCVE•added 2026/05/22 1:6 p.m.•8 views

CVE-2026-43619

A flaw was found in rsync. A local attacker with filesystem access on the daemon host can exploit a symlink race vulnerability CWE-367 Time-of-check to time-of-use in rsync daemons configured with 'use chroot = no'. This allows the attacker to redirect path-based system calls, such as chmod,...

7.2CVSS5.7AI score0.00141EPSS

Exploits0References3

SUSE CVE•added 2026/05/22 2:20 a.m.•7 views

SUSE CVE-2026-29518

Rsync versions before 3.4.3 contain a time-of-check to time-of-use TOCTOU race condition in daemon file handling that allows attackers to redirect file writes outside intended directories by replacing parent directory components with symbolic links. Attackers with write access to a module path ca...

7CVSS5.9AI score0.00147EPSS

Exploits0References14

SUSE CVE•added 2026/05/22 2:20 a.m.•6 views

SUSE CVE-2026-43617

Rsync version 3.4.2 and prior contain an authorization bypass vulnerability in the rsync daemon's hostname-based access control list enforcement when configured with chroot. Attackers can bypass hostname-based deny rules by controlling the PTR record for their source IP address, allowing...

4.8CVSS5.8AI score0.00292EPSS

Exploits0References10

SUSE CVE•added 2026/05/22 2:19 a.m.•5 views

SUSE CVE-2026-43619

Rsync version 3.4.2 and prior contain symlink race condition vulnerabilities in path-based system calls including chmod, lchown, utimes, rename, unlink, mkdir, symlink, mknod, link, rmdir, and lstat that allow local attackers to redirect operations to files outside the exported rsync module...

6.3CVSS6AI score0.00141EPSS

Exploits0References8

Slackware Linux•added 2026/05/21 5:16 a.m.•9 views

[slackware-security] rsync

New rsync packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/rsync-3.4.3-i586-1slack15.0.txz: Upgraded. This update fixes security issues: TOCTOU symlink race condition allowing local privilege...

8.1CVSS5.9AI score0.00643EPSS

Exploits0

SUSE CVE•added 2026/05/21 2:28 a.m.•8 views

SUSE CVE-2026-44933

PluginScript attempts to chroot the plugin to the repoManagerRoot, this root is frequently / the system root in standard configurations or when using --root. If the chroot target is /, it is a no-op, allowing the traversed path to execute host binaries like /bin/bash with root privileges...

7.8CVSS5.9AI score0.00214EPSS

Exploits0References5

Tenable Nessus•added 2026/05/21 12:0 a.m.•9 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS : rsync vulnerabilities (USN-8283-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8283-1 advisory. Calum Hutton discovered that rsync contained a heap-based out-of-bounds read when handling file transfers. A remote...

8.1CVSS5.9AI score0.00643EPSS

Exploits1References9

Snyk•added 2026/05/20 4:3 p.m.•8 views

Time-of-check Time-of-use (TOCTOU) Race Condition

Overview Affected versions of this package are vulnerable to Time-of-check Time-of-use TOCTOU Race Condition in the daemon file handling. An attacker can create or overwrite arbitrary files by replacing parent directory components with symbolic links during the window between validation and use...

7.8CVSS5.9AI score0.00147EPSS

Exploits0References2

OSV•added 2026/05/20 1:16 p.m.•3 views

ALPINE-CVE-2026-29518

7.3CVSS5.9AI score0.00147EPSS

Exploits0References1