Incorrect permission assignment for critical resource in rclone - #VU137264
Published: July 9, 2026
rclone
Detailed vulnerability description
The vulnerability allows a remote attacker to escalate privileges.
The vulnerability exists due to incorrect permission assignment for critical resource in the local backend metadata handling when processing metadata-preserving copies from an untrusted or compromised remote. A remote attacker can supply a crafted file with attacker-controlled mode, uid, and gid metadata to escalate privileges.
User interaction is required to run a metadata-preserving copy or restore with -M. If the operation is run as root, the planted binary can become root-owned and setuid; otherwise it can yield the privileges of the service account running rclone.