Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:25263
HistoryMay 10, 2020 - 11:22 p.m.

Access Control Bypass

2020-05-1023:22:54
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8

EPSS

0.004

Percentile

73.0%

rsync is vulnerable to access control bypass. The recv_files function in receiver.c does not check for a filename in the daemon_filter_list data structure, allowing remote attackers to bypass intended access restrictions.