CVE-2024-12087
MEDIUMCVSS v3.1: 6.5 · EPSS: 0.0222 (80.5 percentile)
Source data as of:
At a glance
- Severity
- MEDIUM
- CVSS
- 6.5 v3.1 · NVD
- EPSS
- 0.0222 (80.5 percentile) · FIRST.org
- CISA KEV
- No
- Type
- Path Traversal · NVD CWE
- Attack conditions (CVSS vector)
- NetworkNo privileges · Source: NVD Vector
- Affected vendors
- nixos, tritondatacenter, archlinux, almalinux, redhat, suse, samba, gentoo
- Published
- 2025-01-14 · Modified: 2026-06-25
- References
- Jump to references (8)
CVSS / EPSS / KEV
Source — CVSS: NVD · EPSS: FIRST.org · KEV: CISA. Data & Sources
Description
A path traversal vulnerability exists in rsync. It stems from behavior enabled by the `--inc-recursive` option, a default-enabled option for many client options and can be enabled by the server even if not explicitly enabled by the client. When using the `--inc-recursive` option, a lack of proper symlink verification coupled with deduplication checks occurring on a per-file-list basis could allow a server to write files outside of the client's intended destination directory. A malicious server could write malicious files to arbitrary locations named after valid directories/paths on the client.
References
Reference URLs as listed by NVD, grouped by a mechanical match on the link's host/pattern. Labels describe the link type only.
- Distro https://access.redhat.com/errata/RHBA-2025:6470
- Distro https://access.redhat.com/errata/RHSA-2025:23154
- Distro https://access.redhat.com/errata/RHSA-2025:23235
- Distro https://access.redhat.com/errata/RHSA-2025:23407
- Distro https://access.redhat.com/errata/RHSA-2025:23415
- Distro https://access.redhat.com/errata/RHSA-2025:23416
- Distro https://access.redhat.com/errata/RHSA-2025:23842
- Distro https://access.redhat.com/errata/RHSA-2025:23853