CVE Catalog

CVE-1999-0473

Low
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.32%

24th percentile — higher than 24% of all known CVEs

Summary

The rsync command before version 2.3.1 may inadvertently change the permissions of the client's working directory to the permissions of the directory being transferred.

Risk Assessment

This could lead to unauthorized access to data or modifications, posing a security risk to the system.

Recommendation

It is recommended to upgrade to rsync version 2.3.1 or later to mitigate this vulnerability.

Original NVD description (English source)

The rsync command before rsync 2.3.1 may inadvertently change the permissions of the client's working directory to the permissions of the directory being transferred.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS