Lucene search
PRIOn knowledge basePRION:CVE-2020-14387HistoryMay 27, 2021 - 8:15 p.m.
Design/Logic Flaw
2021-05-2720:15:00
PRIOn knowledge base
www.prio-n.com
5
A flaw was found in rsync in versions since 3.2.0pre1. Rsync improperly validates certificate with host mismatch vulnerability. A remote, unauthenticated attacker could exploit the flaw by performing a man-in-the-middle attack using a valid certificate for another hostname which could compromise confidentiality and integrity of data transmitted using rsync-ssl. The highest threat from this vulnerability is to data confidentiality and integrity. This flaw affects rsync versions before 3.2.4.
| CPE | Name | Operator | Version |
|---|---|---|---|
| rsync | eq | 3.2.0 | |
| rsync | eq | 3.2.0 pre1 | |
| rsync | ge | 3.2.1 | |
| rsync | lt | 3.2.4 | |
| rsync | eq | 3.2.0 pre2 | |
| rsync | eq | 3.2.0 pre3 |
Related
nvd
nvd
CVE-2020-14387
2021-05-27 20:15:07
cbl_mariner
cbl_mariner
CVE-2020-14387 affecting package rsync for versions less than 3.2.3-2
2022-04-26 19:57:36
archlinux
archlinux
[ASA-202101-1] rsync: man-in-the-middle
2021-01-04 00:00:00
veracode
veracode
Improper Validation Of Certificate
2020-12-19 19:36:48
f5
f5
K84155336 : rsync vulnerability CVE-2020-14387
2022-04-30 00:00:00
cve
cve
CVE-2020-14387
2021-05-27 20:15:07
ubuntucve
ubuntucve
CVE-2020-14387
2021-05-27 00:00:00
osv
osv
CVE-2020-14387
2021-05-27 20:15:07
debiancve
debiancve
CVE-2020-14387
2021-05-27 20:15:07
redhatcve
redhatcve
CVE-2020-14387
2020-09-03 18:48:39
nessus
nessus
Photon OS 4.0: Rsync PHSA-2021-4.0-0046
2021-06-21 00:00:00
GLSA-202405-22 : rsync: Multiple Vulnerabilities
2024-05-08 00:00:00
alpinelinux
alpinelinux
CVE-2020-14387
2021-05-27 20:15:07
cvelist
cvelist
CVE-2020-14387
2021-05-27 19:44:53
photon
photon
Important Photon OS Security Update - PHSA-2021-0046
2021-06-15 00:00:00
Important Photon OS Security Update - PHSA-2021-4.0-0046
2021-06-15 00:00:00
gentoo
gentoo
rsync: Multiple Vulnerabilities
2024-05-08 00:00:00