rsync: 6 CVEs https://www.openwall.com/lists/oss-security/2025/01/14/3 Two independent groups of researchers identified a total of 6 CVEs in rsync. In the most severe CVE (affects rsync 3.2.7+), an attacker only requires anonymous read access to a rsync server, such as a public mirror, to execute arbitrary code.
See Tweet