Lucene search
K

19 matches found

OSV
OSV
added 2026/06/25 5:41 p.m.3 views

JLSEC-2026-631 Rsync version 3.4.2 and prior contain a receiver-side out-of-bounds array read vulnerability in...

Rsync version 3.4.2 and prior contain a receiver-side out-of-bounds array read vulnerability in recvfiles in receiver.c that allows a malicious rsync server to crash the rsync client process. Attackers can exploit the vulnerability by setting CFINCRECURSE in compatibility flags and sending a...

6.9CVSS5.8AI score0.00503EPSS
Exploits0References5
OSV
OSV
added 2026/06/05 3:48 p.m.6 views

OESA-2026-2552 rsync security update

Rsync is an open source utility that provides fast incremental file transfer. It uses the "rsync algorithm" which provides a very fast method for bringing remote files into sync. It does this by sending just the differences in the files across the link, without requiring that both sets of files a...

6.9CVSS5.5AI score0.00503EPSS
Exploits0References2
OSV
OSV
added 2026/06/05 3:48 p.m.8 views

OESA-2026-2549 rsync security update

Rsync is an open source utility that provides fast incremental file transfer. It uses the "rsync algorithm" which provides a very fast method for bringing remote files into sync. It does this by sending just the differences in the files across the link, without requiring that both sets of files a...

6.9CVSS5.5AI score0.00503EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/05/22 2:19 a.m.12 views

SUSE CVE-2026-43620

Rsync version 3.4.2 and prior contain a receiver-side out-of-bounds array read vulnerability in recvfiles in receiver.c that allows a malicious rsync server to crash the rsync client process. Attackers can exploit the vulnerability by setting CFINCRECURSE in compatibility flags and sending a...

6.5CVSS5.8AI score0.00503EPSS
Exploits0References10
Snyk
Snyk
added 2026/05/20 3:42 a.m.12 views

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read via the recvfiles function. An attacker can cause the client process to crash by sending a specially crafted file list from a malicious server, which manipulates compatibility flags and transfer records to trigger an...

7.1CVSS5.8AI score0.00503EPSS
Exploits0References2
OSV
OSV
added 2026/05/20 2:16 a.m.8 views

DEBIAN-CVE-2026-43620

Rsync version 3.4.2 and prior contain a receiver-side out-of-bounds array read vulnerability in recvfiles in receiver.c that allows a malicious rsync server to crash the rsync client process. Attackers can exploit the vulnerability by setting CFINCRECURSE in compatibility flags and sending a...

5.5CVSS5.8AI score0.00503EPSS
Exploits0References1
NVD
NVD
added 2026/05/20 2:16 a.m.22 views

CVE-2026-43620

Rsync version 3.4.2 and prior contain a receiver-side out-of-bounds array read vulnerability in recvfiles in receiver.c that allows a malicious rsync server to crash the rsync client process. Attackers can exploit the vulnerability by setting CFINCRECURSE in compatibility flags and sending a...

6.9CVSS0.00503EPSS
Exploits0References3
OSV
OSV
added 2026/05/20 2:16 a.m.11 views

ALPINE-CVE-2026-43620

Rsync version 3.4.2 and prior contain a receiver-side out-of-bounds array read vulnerability in recvfiles in receiver.c that allows a malicious rsync server to crash the rsync client process. Attackers can exploit the vulnerability by setting CFINCRECURSE in compatibility flags and sending a...

5.5CVSS5.8AI score0.00503EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/20 12:47 a.m.6 views

CVE-2026-43620 Rsync < 3.4.3 Out-of-Bounds Array Read via recv_files()

Rsync version 3.4.2 and prior contain a receiver-side out-of-bounds array read vulnerability in recvfiles in receiver.c that allows a malicious rsync server to crash the rsync client process. Attackers can exploit the vulnerability by setting CFINCRECURSE in compatibility flags and sending a...

6.9CVSS5.8AI score0.00503EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/20 12:47 a.m.7 views

CVE-2026-43620

Rsync version 3.4.2 and prior contain a receiver-side out-of-bounds array read vulnerability in recvfiles in receiver.c that allows a malicious rsync server to crash the rsync client process. Attackers can exploit the vulnerability by setting CFINCRECURSE in compatibility flags and sending a...

6.9CVSS5.8AI score0.00503EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/20 12:47 a.m.9 views

EUVD-2026-31012

Rsync version 3.4.2 and prior contain a receiver-side out-of-bounds array read vulnerability in recvfiles in receiver.c that allows a malicious rsync server to crash the rsync client process. Attackers can exploit the vulnerability by setting CFINCRECURSE in compatibility flags and sending a...

6.9CVSS5.8AI score0.00503EPSS
Exploits0References3
CVE
CVE
added 2026/05/20 12:47 a.m.29 views

CVE-2026-43620

Rsync 3.4.2 and earlier are affected by a receiver-side out-of-bounds array read in recv_files() (receiver.c). The underlying cause is a mismanaged pointer array leading to an 8-byte read before the allocated array, allowing a crafted file list (with CF_INC_RECURSE enabled, first sorted entry not...

6.9CVSS5.8AI score0.00503EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/05/20 12:47 a.m.48 views

CVE-2026-43620 Rsync < 3.4.3 Out-of-Bounds Array Read via recv_files()

Rsync version 3.4.2 and prior contain a receiver-side out-of-bounds array read vulnerability in recvfiles in receiver.c that allows a malicious rsync server to crash the rsync client process. Attackers can exploit the vulnerability by setting CFINCRECURSE in compatibility flags and sending a...

6.9CVSS0.00503EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/05/20 12:47 a.m.7 views

CVE-2026-43620

Rsync version 3.4.2 and prior contain a receiver-side out-of-bounds array read vulnerability in recvfiles in receiver.c that allows a malicious rsync server to crash the rsync client process. Attackers can exploit the vulnerability by setting CFINCRECURSE in compatibility flags and sending a...

6.9CVSS5.8AI score0.00503EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/20 12:47 a.m.11 views

CVE-2026-43620

Rsync version 3.4.2 and prior contain a receiver-side out-of-bounds array read vulnerability in recvfiles in receiver.c that allows a malicious rsync server to crash the rsync client process. Attackers can exploit the vulnerability by setting CFINCRECURSE in compatibility flags and sending a...

6.9CVSS5.8AI score0.00503EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/20 12:0 a.m.11 views

PT-2026-42054

Name of the Vulnerable Software and Affected Versions rsync versions prior to 3.4.3 Description A receiver-side out-of-bounds array read exists in the recv files function within receiver.c. A malicious rsync server can trigger a deterministic SIGSEGV crash of the rsync client process by setting C...

8.1CVSS5.8AI score0.0078EPSS
Exploits0References60
CNNVD
CNNVD
added 2026/05/20 12:0 a.m.10 views

Rsync 缓冲区错误漏洞

Rsync is a fast and versatile file copying tool developed by RsyncProject. It is used for both remote and local files. Versions of Rsync 3.4.2 and earlier have a buffer error vulnerability. This vulnerability stems from an array out-of-bounds read in the recvfiles function in receiver.c. A...

6.9CVSS6AI score0.00503EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/20 12:0 a.m.9 views

CVE-2026-43620

Rsync version 3.4.2 and prior contain a receiver-side out-of-bounds array read vulnerability in recvfiles in receiver.c that allows a malicious rsync server to crash the rsync client process. Attackers can exploit the vulnerability by setting CFINCRECURSE in compatibility flags and sending a...

6.9CVSS5.8AI score0.00503EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/05/20 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-43620

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Rsync version 3.4.2 and prior contain a receiver-side out-of-bounds array read vulnerability in recvfiles in receiver.c that allows a malicious rsync server to...

6.9CVSS5.5AI score0.00503EPSS
Exploits0References2
Rows per page
Query Builder