CVE-2014-9512
EPSS 8.9%
Description
rsync 3.1.1 allows remote attackers to write to arbitrary files via a symlink attack on a file in the synchronization path.
How to fix CVE-2014-9512
To remediate CVE-2014-9512, upgrade the affected package to a fixed version below.
- Debian/rsync—upgrade to 3.1.1-3 or later
Is CVE-2014-9512 being exploited?
Moderate — EPSS is 8.9%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (1)
- Debian/rsyncfrom 0, < 3.1.1-3