VDB
CVE-2026-43618
CVE-2026-43618
PUBLISHED
CVSS 6.099999904632568 MEDIUM
Rsync version 3.4.2 and prior contain an integer overflow vulnerability in the compressed-token decoder where a 32-bit signed counter is not checked for overflow, allowing a malicious sender to trigger an overflow that causes the receiver process to read and return data from outside the intended buffer bounds. Attackers can exploit this vulnerability to disclose process memory contents including environment variables, passwords, heap and stack data, and library memory pointers, significantly reducing ASLR effectiveness and facilitating further exploitation.
EPSS 0.06% · 17.9th percentile
Risk Scores
CVSS v4.0
6.099999904632568
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.06%
17.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| RsyncProject | rsync | 0 |
Timeline
- May 20, 2026 EPSS Score
- May 20, 2026 CVE Published
- May 20, 2026 PoC Published
- May 20, 2026 PoC Published
- May 20, 2026 CVE Updated
- May 20, 2026 PoC Published
- May 20, 2026 Security Advisory
- May 21, 2026 EPSS Score
- May 22, 2026 EPSS Score
- May 23, 2026 EPSS Score
- May 24, 2026 EPSS Score
- May 25, 2026 EPSS Score
References
- https://github.com/RsyncProject/rsync/security/advisories/GHSA-g37v-g3gj-pmwq vendor-advisory
- https://github.com/RsyncProject/rsync/releases/tag/v3.4.3 url
- https://www.vulncheck.com/advisories/rsync-integer-overflow-information-disclosure third-party-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2026-43618 advisory