Lsyncd
1 CVEs
product
Monthly
default-rsyncssh.lua in Lsyncd 2.1.5 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in a filename. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.
Command Injection
Debian Linux
Fedora
Lsyncd
NVD
GitHub
CVSS 2.0
7.5
EPSS
4.3%
EPSS 4%
CVSS 7.5
HIGH
POC
PATCH
This Week
default-rsyncssh.lua in Lsyncd 2.1.5 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in a filename. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.
Command Injection
Debian Linux
Fedora
+1
NVD
GitHub