Pizzashack » Rssh : Security Vulnerabilities, CVEs, CVSS score >= 9
Insufficient sanitization of environment variables passed to rsync can bypass the restrictions imposed by rssh, a restricted shell that should restrict users to perform only rsync operations, resulting in the execution of arbitrary shell commands.
Max CVSS
9.8
EPSS Score
1.91%
Published
2019-02-06
Updated
2021-07-21
Insufficient sanitization of arguments passed to rsync can bypass the restrictions imposed by rssh, a restricted shell that should restrict users to perform only rsync operations, resulting in the execution of arbitrary shell commands.
Max CVSS
9.8
EPSS Score
1.91%
Published
2019-02-06
Updated
2021-07-21
Format string vulnerability in log.c in rssh before 2.2.2 allows remote authenticated users to execute arbitrary code.
Max CVSS
9.0
EPSS Score
0.56%
Published
2004-10-23
Updated
2020-12-08
3 vulnerabilities found