Vulnerability in Rclone

CVE-2024-52522

Rclone is a command-line program to sync files and directories to and from different cloud storage providers. Insecure handling of symlinks with --links and --metadata in rclone while copying to local disk allows unprivileged users to indi…

EPSS: 0.002 (11.7th percentile) — read the EPSS interpretation.

Affected products

  • Rclone — versions >= 1.59.0, < 1.68.2

Weakness classification (CWE)

References