Link following in Netatalk - CVE-2026-44051
Published: July 12, 2026
Netatalk
Detailed vulnerability description
The vulnerability allows a remote user to create arbitrary symlinks and disclose sensitive information.
The vulnerability exists due to improper link resolution before file access in the afp_setfilparams FPSetFilParms command handler when processing FinderInfo values set to "slnkrhap" for a file whose contents are used as the symlink target path. A remote user can create a file containing an arbitrary path string and send a crafted FPSetFilParms request to create arbitrary symlinks and disclose sensitive information.
Exploitation requires write access to an AFP volume, and the disclosure occurs when another service or process follows the created symlink.