CVE-2020-14387

EUVD-2020-6527

27.05.2021, 20:15

A flaw was found in rsync in versions since 3.2.0pre1. Rsync improperly validates certificate with host mismatch vulnerability. A remote, unauthenticated attacker could exploit the flaw by performing a man-in-the-middle attack using a valid certificate for another hostname which could compromise confidentiality and integrity of data transmitted using rsync-ssl. The highest threat from this vulnerability is to data confidentiality and integrity. This flaw affects rsync versions before 3.2.4.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	7.4 HIGH	NETWORK	HIGH	NONE	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 34%

Affected Products (NVD)

Vendor	Product	Version
samba	rsync	3.2.1 ≤ 𝑥 < 3.2.4
samba	rsync	3.2.0
samba	rsync	3.2.0:pre1
samba	rsync	3.2.0:pre2
samba	rsync	3.2.0:pre3

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

rsync

bookworm	3.2.7-1 fixed
bullseye	3.2.3-4+deb11u1 fixed
buster	not-affected
sid	3.3.0-1 fixed
stretch	not-affected
trixie	3.3.0-1 fixed

Ubuntu Releases

Ubuntu Product

Codename

rsync

bionic	not-affected
focal	not-affected
trusty	not-affected
xenial	not-affected

Common Weakness Enumeration

CWE-297 - Improper Validation of Certificate with Host Mismatch
The software communicates with a host that provides a certificate, but the software does not properly ensure that the certificate is actually associated with that host.

References

https://bugzilla.redhat.com/show_bug.cgi?id=1875549