Vulnerabilities > Rsyslog > Rsyslog > 3.20.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-12-17 | CVE-2008-5617 | Permissions, Privileges, and Access Controls vulnerability in Rsyslog The ACL handling in rsyslog 3.12.1 to 3.20.0, 4.1.0, and 4.1.1 does not follow $AllowedSender directive, which allows remote attackers to bypass intended access restrictions and spoof log messages or create a large number of spurious messages. | 8.5 |