CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2024-12747: Rsync: race condition in rsync handling symbolic links

Description

A flaw was found in rsync. This vulnerability arises from a race condition during rsync's handling of symbolic links. Rsync's default behavior when encountering symbolic links is to skip them. If an attacker replaced a regular file with a symbolic link at the right time, it was possible to bypass the default behavior and traverse symbolic links. Depending on the privileges of the rsync process, an attacker could leak sensitive information, potentially leading to privilege escalation.

Classification

CVE ID: CVE-2024-12747

Affected Products

Vendor: Red Hat

Product: Red Hat Enterprise Linux 6

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.05% (probability of being exploited)

EPSS Percentile: 17.78% (scored less or equal to compared to others)

EPSS Date: 2025-02-12 (when was this score calculated)

References

https://access.redhat.com/security/cve/CVE-2024-12747
https://bugzilla.redhat.com/show_bug.cgi?id=2332968
https://kb.cert.org/vuls/id/952657

Timeline

2025-01-15 00:30:14 UTC
CVE

Rsync: race condition in rsync handling symbolic links
2025-03-25 12:00:49 UTC
Tenable Plugins

SUSE SLES15 Security Update : rsync (SUSE-SU-2025:0991-1)