Debian Gnu Linux Rssh vulnerabilities
2 known vulnerabilities affecting debian_gnu/linux_rssh.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL2
Vulnerabilities
Page 1 of 1
CVE-2019-3463CRITICALCVSS 9.8PoCvAll versions before 2.3.4-5+deb9u2 and 2.3.4-102019-02-06
CVE-2019-3463 [CRITICAL] CWE-88 CVE-2019-3463: Insufficient sanitization of arguments passed to rsync can bypass the restrictions imposed by rssh,
Insufficient sanitization of arguments passed to rsync can bypass the restrictions imposed by rssh, a restricted shell that should restrict users to perform only rsync operations, resulting in the execution of arbitrary shell commands.
nvd
CVE-2019-3464CRITICALCVSS 9.8PoCvAll versions before 2.3.4-5+deb9u2 and 2.3.4-102019-02-06
CVE-2019-3464 [CRITICAL] CWE-665 CVE-2019-3464: Insufficient sanitization of environment variables passed to rsync can bypass the restrictions impos
Insufficient sanitization of environment variables passed to rsync can bypass the restrictions imposed by rssh, a restricted shell that should restrict users to perform only rsync operations, resulting in the execution of arbitrary shell commands.
nvd