CVE-2017-15994

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
29/10/2017
Last modified:
20/04/2025

Description

rsync 3.1.3-development before 2017-10-24 mishandles archaic checksums, which makes it easier for remote attackers to bypass intended access restrictions. NOTE: the rsync development branch has significant use beyond the rsync developers, e.g., the code has been copied for use in various GitHub projects.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:samba:rsync:*:*:*:*:*:*:*:* 3.1.2 (including)