VYPR
Unrated severityNVD Advisory· Published Feb 6, 2019· Updated Sep 17, 2024

CVE-2019-3464

CVE-2019-3464

Description

Insufficient sanitization of environment variables passed to rsync can bypass the restrictions imposed by rssh, a restricted shell that should restrict users to perform only rsync operations, resulting in the execution of arbitrary shell commands.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Rssh/Rsshllm-fuzzy
  • Debian GNU/Linux/rsshv5
    Range: All versions before 2.3.4-5+deb9u2 and 2.3.4-10

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.