A vulnerability was found in RsyncProject rsync up to 3.4.2 . It has been declared as problematic . Affected by this vulnerability is an unknown functionality of the component Access Control List Handler . Executing a manipulation can lead to authentication bypass by alternate name. The identification of this vulnerability is CVE-2026-43617 . The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.