Vulnerability in Rclone
CVE-2024-52522
Rclone is a command-line program to sync files and directories to and from different cloud storage providers. Insecure handling of symlinks with --links and --metadata in rclone while copying to local disk allows unprivileged users to indi…
EPSS: 0.002 (11.7th percentile) — read the EPSS interpretation.
Affected products
- Rclone — versions >= 1.59.0, < 1.68.2
Weakness classification (CWE)
References
- security-advisories@github.com (x_refsource_CONFIRM)
- security-advisories@github.com (x_refsource_MISC)