CVE-2022-29154

HIGH

rsync < 3.2.5 - Arbitrary File Write via Insufficient File Name Validation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-29154. PoCs published by EgeBalci.

AI-analyzed exploit summary This repository contains presentation materials for CVE-2022-29154, including slides and a link to a conference recording. No exploit code is present, only documentation.

Description

An issue was discovered in rsync before 3.2.5 that allows malicious remote servers to write arbitrary files inside the directories of connecting peers. The server chooses which files/directories are sent to the client. However, the rsync client performs insufficient validation of file names. A malicious rsync server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the rsync client target directory and subdirectories (for example, overwrite the .ssh/authorized_keys file).

Exploits (1)

nomisec WRITEUP 9 stars
by EgeBalci · poc
https://github.com/EgeBalci/CVE-2022-29154

This repository contains presentation materials for CVE-2022-29154, including slides and a link to a conference recording. No exploit code is present, only documentation.

Classification
Writeup 90%
Attack Type
Other
Complexity
Trivial
Reliability
Theoretical
Target: unspecified
No auth needed
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Release Notes, Third Party Advisory x_refsource_misc
https://github.com/WayneD/rsync/tags
Exploit, Mailing List, Patch, Third Party Advisory mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2022/08/02/1

Scores

CVSS v3 7.4
EPSS 0.0165
EPSS Percentile 73.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H

Details

CWE
CWE-20
Status published
Products (3)
fedoraproject/fedora 35
fedoraproject/fedora 36
samba/rsync < 3.2.5
Published Aug 02, 2022
Tracked Since Feb 18, 2026