cbcvebase.

Github.Com Rclone Rclone vulnerabilities

5 known vulnerabilities affecting github.com/rclone_rclone.

Total CVEs
5
CISA KEV
0
Public exploits
2
Exploited in wild
1
Severity breakdown
CRITICAL3HIGH1MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2026-41176P1CRITICALExploitedPoC≥ 1.45.0, < 1.73.52026-04-22
CVE-2026-41176 [CRITICAL] CWE-306 Rclone: Unauthenticated options/set allows runtime auth bypass, leading to sensitive operations and command execution Rclone: Unauthenticated options/set allows runtime auth bypass, leading to sensitive operations and command execution ### Summary The RC endpoint `options/set` is exposed without `AuthRequired: true`, but it can mutate global runtime configuration, including the RC option block itself. An unauthenticated attacker can set `rc.NoAuth=true`, which
ghsa
CVE-2026-41179P1CRITICALPoC≥ 1.48.0, < 1.73.52026-04-22
CVE-2026-41179 [CRITICAL] CWE-306 RClone: Unauthenticated operations/fsinfo allows attacker-controlled backend instantiation and local command execution RClone: Unauthenticated operations/fsinfo allows attacker-controlled backend instantiation and local command execution ### Summary The RC endpoint `operations/fsinfo` is exposed without `AuthRequired: true` and accepts attacker-controlled `fs` input. Because `rc.GetFs(...)` supports inline backend definitions, an unauthenticated attacker can in
ghsa
CVE-2026-49980P2CRITICALCVSS 9.8≥ 1.46.0, < 1.74.32026-06-16
CVE-2026-49980 [CRITICAL] CWE-306 Rclone: Unauthenticated command execution in `rclone rcd --rc-serve` via inline remote instantiation, bypassing CVE-2026-41179 fix Rclone: Unauthenticated command execution in `rclone rcd --rc-serve` via inline remote instantiation, bypassing CVE-2026-41179 fix ## Summary `rclone rcd --rc-serve` accepts unauthenticated `GET` and `HEAD` requests to paths of the form: ```text /[remote:path]/object ``` The `remote` value is parsed from the URL and passed to nor
ghsa
CVE-2020-28924P3HIGH≥ 0, < 1.53.32021-06-10
CVE-2020-28924 [HIGH] CWE-331 Use of Cryptographically Weak Pseudo-Random Number Generator in Rclone Use of Cryptographically Weak Pseudo-Random Number Generator in Rclone An issue was discovered in Rclone before 1.53.3. Due to the use of a weak random number generator, the password generator has been producing weak passwords with much less entropy than advertised. The suggested passwords depend deterministically on the time the second rclone was started. This limits the entropy of the password
ghsaosv
CVE-2024-52522P4MEDIUM≥ 1.59.0, < 1.68.22024-11-19
CVE-2024-52522 [MEDIUM] CWE-281 Rclone has Improper Permission and Ownership Handling on Symlink Targets with --links and --metadata Rclone has Improper Permission and Ownership Handling on Symlink Targets with --links and --metadata ### **tl;dr:** unprivileged user creates a symlink to /etc/sudoers, /etc/shadow or similar and waits for a privileged user or process to copy/backup/mirror users data (using `--links` and `--metadata`). unprivileged user now owns /etc/sudoers. ### Summary Insecu
ghsaosv
Github.Com Rclone Rclone vulnerabilities | cvebase