CVE-2020-14387

27.05.2021, 20:15

A flaw was found in rsync in versions since 3.2.0pre1. Rsync improperly validates certificate with host mismatch vulnerability. A remote, unauthenticated attacker could exploit the flaw by performing a man-in-the-middle attack using a valid certificate for another hostname which could compromise confidentiality and integrity of data transmitted using rsync-ssl. The highest threat from this vulnerability is to data confidentiality and integrity. This flaw affects rsync versions before 3.2.4.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.4 HIGH	NETWORK	HIGH	NONE	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
redhat	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 36%

Vendor	Product	Version
samba	rsync	3.2.1 ≤ 𝑥 < 3.2.4
samba	rsync	3.2.0
samba	rsync	3.2.0:pre1
samba	rsync	3.2.0:pre2
samba	rsync	3.2.0:pre3

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

rsync

bullseye	3.2.3-4+deb11u1 fixed
buster	not-affected
stretch	not-affected
bookworm	3.2.7-1 fixed
sid	3.3.0-1 fixed
trixie	3.3.0-1 fixed

Ubuntu Releases

Ubuntu Product

Codename

rsync

focal	not-affected
bionic	not-affected
xenial	not-affected
trusty	not-affected

Common Weakness Enumeration

CWE-297 - Improper Validation of Certificate with Host Mismatch
The software communicates with a host that provides a certificate, but the software does not properly ensure that the certificate is actually associated with that host.

References

https://bugzilla.redhat.com/show_bug.cgi?id=1875549