Improper Link Resolution Before File Access ('Link Following')

The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

CVEs (1,500)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-29975 1Microsoft 1Pc Manager May 19, 2025 May 13, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Improper link resolution before file access ('link following') in Microsoft PC Manager allows an authorized attacker to elevate privileges locally.
CVE-2025-29837 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more May 19, 2025 May 13, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Improper link resolution before file access ('link following') in Windows Installer allows an authorized attacker to disclose information locally.
CVE-2025-1079 1Google 1Web Designer Jul 29, 2025 May 12, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Client RCE on macOS and Linux via improper symbolic link resolution in Google Web Designer's preview feature
CVE-2025-22247 - - Nov 18, 2025 May 12, 2025 N/A· v4 6.1 MEDIUM· v3 N/A· v2 VMware Tools contains an insecure file handling vulnerability. A malicious actor with non-administrative privileges on a guest VM may tamper the local files to trigger insecure file operations within that VM.
CVE-2024-9524 - - May 12, 2025 May 9, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Link Following Local Privilege Escalation Vulnerability in System Speedup Service in Avira Operations GmbH Avira Prime Version 1.1.96.2 on Windows 10 x64 allows local attackers to escalate privileges and execute arbitrar...Show more Link Following Local Privilege Escalation Vulnerability in System Speedup Service in Avira Operations GmbH Avira Prime Version 1.1.96.2 on Windows 10 x64 allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic link and leveraging a TOCTTOU (time-of-check to time-of-use) attack.Show less
CVE-2024-13962 - - May 12, 2025 May 9, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Gen Digital Inc. Avast Cleanup Premium Version 24.2.16593.17810 on Windows 10 Pro x64 allows local attackers to escalate privileges and execute arbi...Show more Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Gen Digital Inc. Avast Cleanup Premium Version 24.2.16593.17810 on Windows 10 Pro x64 allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic link and leveraging a TOCTTOU (time-of-check to time-of-use) attack.Show less
CVE-2024-13961 - - May 12, 2025 May 9, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Avast Cleanup Premium Version 24.2.16593.17810 on Windows 10 Pro x64 allows local attackers to escalate privileges and execute arbitrary code in the...Show more Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Avast Cleanup Premium Version 24.2.16593.17810 on Windows 10 Pro x64 allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic link and leveraging a TOCTTOU (time-of-check to time-of-use) attack.Show less
CVE-2024-13960 - - May 12, 2025 May 9, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Link Following Local Privilege Escalation Vulnerability in TuneUp Service in AVG TuneUp Version 23.4 (build 15592) on Windows 10 allows local attackers to escalate privileges and execute arbitrary code in the context of...Show more Link Following Local Privilege Escalation Vulnerability in TuneUp Service in AVG TuneUp Version 23.4 (build 15592) on Windows 10 allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic link and leveraging a TOCTTOU (time-of-check to time-of-use) attack.Show less
CVE-2024-13959 - - May 12, 2025 May 9, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Link Following Local Privilege Escalation Vulnerability in TuneupSvc.exe in AVG TuneUp 24.2.16593.9844 on Windows allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via crea...Show more Link Following Local Privilege Escalation Vulnerability in TuneupSvc.exe in AVG TuneUp 24.2.16593.9844 on Windows allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic link and leveraging the service to delete a directoryShow less
CVE-2024-13944 - - Oct 13, 2025 May 9, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Link Following Local Privilege Escalation Vulnerability in NortonUtilitiesSvc in Norton Utilities Ultimate Version 24.2.16862.6344 on Windows 10 Pro x64 allows local attackers to escalate privileges and execute arbitrary...Show more Link Following Local Privilege Escalation Vulnerability in NortonUtilitiesSvc in Norton Utilities Ultimate Version 24.2.16862.6344 on Windows 10 Pro x64 allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via the creation of a symbolic link and leveraging a TOCTTOU (time-of-check to time-of-use) attack.Show less
CVE-2024-13759 - - May 12, 2025 May 9, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Local Privilege Escalation in Avira.Spotlight.Service.exe in Avira Prime 1.1.96.2 on Windows 10 x64 allows local attackers to gain system-level privileges via arbitrary file deletion
CVE-2025-3224 1Docker 1Desktop May 10, 2025 Apr 28, 2025 7.3 HIGH· v4 7.8 HIGH· v3 N/A· v2 A vulnerability in the update process of Docker Desktop for Windows versions prior to 4.41.0 could allow a local, low-privileged attacker to escalate privileges to SYSTEM. During an update, Docker Desktop attempts to del...Show more A vulnerability in the update process of Docker Desktop for Windows versions prior to 4.41.0 could allow a local, low-privileged attacker to escalate privileges to SYSTEM. During an update, Docker Desktop attempts to delete files and subdirectories under the path C:\ProgramData\Docker\config with high privileges. However, this directory often does not exist by default, and C:\ProgramData\ allows normal users to create new directories. By creating a malicious Docker\config folder structure at this location, an attacker can force the privileged update process to delete or manipulate arbitrary system files, leading to Elevation of Privilege.Show less
CVE-2025-1697 1Hp 1Touchpoint Analytics Service Feb 24, 2026 Apr 18, 2025 6.9 MEDIUM· v4 7.8 HIGH· v3 N/A· v2 A potential security vulnerability has been identified in the HP Touchpoint Analytics Service for certain HP PC products with versions prior to 4.2.2439. This vulnerability could potentially allow a local attacker to esc...Show more A potential security vulnerability has been identified in the HP Touchpoint Analytics Service for certain HP PC products with versions prior to 4.2.2439. This vulnerability could potentially allow a local attacker to escalate privileges. HP is providing software updates to mitigate this potential vulnerability.Show less
CVE-2025-32817 - - Apr 17, 2025 Apr 16, 2025 N/A· v4 6.1 MEDIUM· v3 N/A· v2 A Improper Link Resolution vulnerability (CWE-59) in the SonicWall Connect Tunnel Windows (32 and 64 bit) client, this results in unauthorized file overwrite, potentially leading to denial of service or file corruption.
CVE-2025-29983 1Dell 1Trusted Device Agent Aug 15, 2025 Apr 15, 2025 N/A· v4 7.3 HIGH· v3 N/A· v2 Dell Trusted Device, versions prior to 7.0.3.0, contain an Improper Link Resolution Before File Access ('Link Following') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerab...Show more Dell Trusted Device, versions prior to 7.0.3.0, contain an Improper Link Resolution Before File Access ('Link Following') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges.Show less
CVE-2025-23010 - - Apr 17, 2025 Apr 10, 2025 N/A· v4 7.2 HIGH· v3 N/A· v2 An Improper Link Resolution Before File Access ('Link Following') vulnerability in SonicWall NetExtender Windows (32 and 64 bit) client which allows an attacker to manipulate file paths.
CVE-2025-27727 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more Jul 8, 2025 Apr 8, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Improper link resolution before file access ('link following') in Windows Installer allows an authorized attacker to elevate privileges locally.
CVE-2025-21204 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more Jul 9, 2025 Apr 8, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Improper link resolution before file access ('link following') in Windows Update Stack allows an authorized attacker to elevate privileges locally.
CVE-2025-30457 1Apple 1Macos Apr 2, 2026 Mar 31, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. A malicious app may be able to create symlinks to protected regions of...Show more This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. A malicious app may be able to create symlinks to protected regions of the disk.Show less
CVE-2025-24278 1Apple 1Macos Apr 2, 2026 Mar 31, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An app may be able to access protected user data.

Previous 1...111213...75 Next