Lucene search
F5F5:K84155336HistoryApr 30, 2022 - 12:00 a.m.
K84155336 : rsync vulnerability CVE-2020-14387
2022-04-3000:00:00
my.f5.com
20
Security Advisory Description
A flaw was found in rsync in versions since 3.2.0pre1. Rsync improperly validates certificate with host mismatch vulnerability. A remote, unauthenticated attacker could exploit the flaw by performing a man-in-the-middle attack using a valid certificate for another hostname which could compromise confidentiality and integrity of data transmitted using rsync-ssl. The highest threat from this vulnerability is to data confidentiality and integrity. This flaw affects rsync versions before 3.2.4. (CVE-2020-14387)
Impact
There is no impact; F5 products are not affected by this vulnerability.
Related
prion
prion
Design/Logic Flaw
2021-05-27 20:15:00
nvd
nvd
CVE-2020-14387
2021-05-27 20:15:07
cbl_mariner
cbl_mariner
CVE-2020-14387 affecting package rsync for versions less than 3.2.3-2
2022-04-26 19:57:36
archlinux
archlinux
[ASA-202101-1] rsync: man-in-the-middle
2021-01-04 00:00:00
veracode
veracode
Improper Validation Of Certificate
2020-12-19 19:36:48
ubuntucve
ubuntucve
CVE-2020-14387
2021-05-27 00:00:00
osv
osv
CVE-2020-14387
2021-05-27 20:15:07
cve
cve
CVE-2020-14387
2021-05-27 20:15:07
debiancve
debiancve
CVE-2020-14387
2021-05-27 20:15:07
redhatcve
redhatcve
CVE-2020-14387
2020-09-03 18:48:39
nessus
nessus
Photon OS 4.0: Rsync PHSA-2021-4.0-0046
2021-06-21 00:00:00
GLSA-202405-22 : rsync: Multiple Vulnerabilities
2024-05-08 00:00:00
alpinelinux
alpinelinux
CVE-2020-14387
2021-05-27 20:15:07
cvelist
cvelist
CVE-2020-14387
2021-05-27 19:44:53
photon
photon
Important Photon OS Security Update - PHSA-2021-0046
2021-06-15 00:00:00
Important Photon OS Security Update - PHSA-2021-4.0-0046
2021-06-15 00:00:00
gentoo
gentoo
rsync: Multiple Vulnerabilities
2024-05-08 00:00:00