CVE Catalog
CVE-1999-0473
LowExploitation Probability (EPSS)
Low risk0.32%
24th percentile — higher than 24% of all known CVEs
Summary
The rsync command before version 2.3.1 may inadvertently change the permissions of the client's working directory to the permissions of the directory being transferred.
Risk Assessment
This could lead to unauthorized access to data or modifications, posing a security risk to the system.
Recommendation
It is recommended to upgrade to rsync version 2.3.1 or later to mitigate this vulnerability.
Original NVD description (English source)
The rsync command before rsync 2.3.1 may inadvertently change the permissions of the client's working directory to the permissions of the directory being transferred.

