VYPR

rssh

by Debian

CVEs (2)

  • CVE-2019-3464CriFeb 6, 2019
    risk 0.64cvss 9.8epss 0.05

    Insufficient sanitization of environment variables passed to rsync can bypass the restrictions imposed by rssh, a restricted shell that should restrict users to perform only rsync operations, resulting in the execution of arbitrary shell commands.

  • CVE-2019-3463CriFeb 6, 2019
    risk 0.64cvss 9.8epss 0.05

    Insufficient sanitization of arguments passed to rsync can bypass the restrictions imposed by rssh, a restricted shell that should restrict users to perform only rsync operations, resulting in the execution of arbitrary shell commands.