VYPR
Medium severity6.5NVD Advisory· Published Jan 14, 2025· Updated Apr 14, 2026

CVE-2024-12088

CVE-2024-12088

Description

A flaw was found in rsync. When using the --safe-links option, the rsync client fails to properly verify if a symbolic link destination sent from the server contains another symbolic link within it. This results in a path traversal vulnerability, which may lead to arbitrary file write outside the desired directory.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

60

Patches

Vulnerability mechanics

References

11

News mentions

1
CVE-2024-12088 · Medium · VYPR