CVE-2002-0080 — LOW severity vulnerability (rsync, when running in daemon mode, does not properly call s)
rsync, when running in daemon mode, does not properly call setgroups before dropping privileges, which could provide supplemental group privileges to local users, who could then read certain files that would otherwise be disallowed.
| CVE ID | CVE-2002-0080 |
|---|---|
| Severity | LOW |
| CVSS score | 2.1 |
| CVSS vector | AV:L/AC:L/Au:N/C:P/I:N/A:N |
| CWE | CWE-269 |
| Status | Modified |
| Published | 2002-03-15 |
| Last modified | 2026-04-16 |
| Description | rsync, when running in daemon mode, does not properly call setgroups before dropping privileges, which could provide supplemental group privileges to local users, who could then read certain files that would otherwise be disallowed. |
| Source | NIST National Vulnerability Database |
🔍 Search all vulnerabilities →
$999/mo
Try CVECheck →