Improper input validation in Pizzashack Rssh

CVE-2012-2251

rssh 2.3.2, as used by Debian, Fedora, and others, when the rsync protocol is enabled, allows local users to bypass intended restricted shell access via a (1) "-e" or (2) "--" command line option.

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.003 (25.3th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References