CVE•Published 2026-05-20•Modified 2026-05-21•0 articles on news•5 live references•NVD data

CVE-2026-45232Samba · Rsync

Vulnerability data via NVD (ingested)

CVSS v3.1

3.1

LOW

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L

EPSS percentile

—

Weaknesses (CWE)

CWE-193Off-by-one Error

Description

Rsync versions before 3.4.3 contain an off-by-one out-of-bounds stack write vulnerability in the establish_proxy_connection() function in socket.c that allows network attackers to corrupt stack memory by sending a malformed HTTP proxy response. Attackers can exploit this by positioning themselves between the client and proxy or controlling the proxy server to send a response line of 1023 or more bytes without a newline terminator, causing a null byte to be written to an out-of-bounds stack address when the RSYNC_PROXY environment variable is set.

Timeline

Published 2026-05-20

Modified 2026-05-21

External references

NVD MITRE Exploit-DB Sploitus VulnCheck

Search for exposed instances

Shodan + Censys queries derived from NVD's CPE data. The vuln tag catches assets Shodan has explicitly linked to this CVE; the product / banner fingerprints find exposed instances even when the vuln tag was never applied (which is common).

Shodan · vuln tag0 hosts

vuln:CVE-2026-45232

Hosts Shodan has explicitly fingerprinted as vulnerable.

Shodan · product

product:"Samba Rsync"

All exposed Samba Rsync instances — cross-reference with the CVE's affected-version range.

Shodan · banner/body mention

http.html:"Rsync"

HTTP body or banner mentions "Rsync" — catches deploys Shodan didn't identify as a product.

More intel sources (5)

Shodan report

vuln:CVE-2026-45232