Vulnerability Description
A path traversal vulnerability exists in rsync. It stems from behavior enabled by the `--inc-recursive` option, a default-enabled option for many client options and can be enabled by the server even if not explicitly enabled by the client. When using the `--inc-recursive` option, a lack of proper symlink verification coupled with deduplication checks occurring on a per-file-list basis could allow a server to write files outside of the client's intended destination directory. A malicious server could write malicious files to arbitrary locations named after valid directories/paths on the client.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Samba | Rsync | <= 3.3.0 |
| Almalinux | Almalinux | 8.0 |
| Archlinux | Arch Linux | - |
| Gentoo | Linux | - |
| Nixos | Nixos | < 24.11 |
| Suse | Suse Linux | - |
| Tritondatacenter | Smartos | < 20250123 |
| Redhat | Enterprise Linux | 8.0 |
| Redhat | Enterprise Linux Eus | 9.6 |
| Redhat | Enterprise Linux For Arm 64 | 8.0_aarch64 |
| Redhat | Enterprise Linux For Arm 64 Eus | 9.6_aarch64 |
| Redhat | Enterprise Linux For Ibm Z Systems | 8.0_s390x |
| Redhat | Enterprise Linux For Ibm Z Systems Eus | 9.6_s390x |
| Redhat | Enterprise Linux For Power Little Endian | 8.0_ppc64le |
| Redhat | Enterprise Linux For Power Little Endian Eus | 9.6_ppc64le |
| Redhat | Enterprise Linux Server Aus | 9.6 |
| Redhat | Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions | 9.6_ppc64le |
| Redhat | Enterprise Linux Update Services For Sap Solutions | 9.6 |
Related Weaknesses (CWE)
References
- https://access.redhat.com/errata/RHBA-2025:6470
- https://access.redhat.com/errata/RHSA-2025:23154
- https://access.redhat.com/errata/RHSA-2025:23235
- https://access.redhat.com/errata/RHSA-2025:23407
- https://access.redhat.com/errata/RHSA-2025:23415
- https://access.redhat.com/errata/RHSA-2025:23416
- https://access.redhat.com/errata/RHSA-2025:23842
- https://access.redhat.com/errata/RHSA-2025:23853
- https://access.redhat.com/errata/RHSA-2025:23854
- https://access.redhat.com/errata/RHSA-2025:23858
- https://access.redhat.com/errata/RHSA-2025:2600Third Party Advisory
- https://access.redhat.com/errata/RHSA-2025:7050Third Party Advisory
- https://access.redhat.com/errata/RHSA-2025:8385Third Party Advisory
- https://access.redhat.com/security/cve/CVE-2024-12087Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2330672Issue TrackingThird Party Advisory
FAQ
What is CVE-2024-12087?
CVE-2024-12087 is a vulnerability with a CVSS score of 6.5 (MEDIUM). A path traversal vulnerability exists in rsync. It stems from behavior enabled by the `--inc-recursive` option, a default-enabled option for many client options and can be enabled by the server even i...
How severe is CVE-2024-12087?
CVE-2024-12087 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-12087?
Check the references section above for vendor advisories and patch information. Affected products include: Samba Rsync, Almalinux Almalinux, Archlinux Arch Linux, Gentoo Linux, Nixos Nixos.