CVE-2024-52522

Summary

CVE-2024-52522 is a vulnerability affecting Rclone, a command-line tool used for syncing files between cloud storage providers and local disks. The flaw lies in the insecure handling of symlinks during file copying operations with the "--links" and "--metadata" flags. Unprivileged users can manipulate symlink target file ownership and permissions, potentially enabling privilege escalation and unauthorized access to critical system files. This could result in significant impacts on system integrity, confidentiality, and availability. The vulnerability has been addressed in Rclone version 1.68.2.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.