#VU66189 Path traversal in Rsync - CVE-2022-29154

Cybersecurity Help s.r.o.

Published: 2022-08-08

Vulnerability identifier: #VU66189

Vulnerability risk: Low

CVSSv4.0: 1.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-29154

CWE-ID: CWE-22

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Rsync
Server applications / Other server solutions

Vendor: Samba

Description

The vulnerability allows a remote server to perform directory traversal attacks.

The vulnerability exists due to input validation error within the rsync client when processing file names. A remote malicious server overwrite arbitrary files in the rsync client target directory and subdirectories on the connected peer.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Rsync: 3.2.0 - 3.2.4pre4

External links
https://www.openwall.com/lists/oss-security/2022/08/02/1

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Dell XtremIO X2

Amazon Linux AMI update for rsync

Gentoo update for rsync

Path traversal in IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data

Multiple vulnerabilities in IBM Cloud Pak for Network Automation

Multiple vulnerabilities in Dell PowerStore Family

Multiple vulnerabilities in IBM Cloud Pak for Watson AIOps

Multiple vulnerabilities in Red Hat OpenShift Data Foundation 4.13

Multiple vulnerabilities in IBM Cloud Pak for Security (CP4S)

Multiple vulnerabilities in IBM Security Guardium