Improper Link Resolution Before File Access ('Link Following')

The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

CVEs (1,500)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-24242 1Apple 1Macos Nov 3, 2025 Mar 31, 2025 N/A· v4 4.4 MEDIUM· v3 N/A· v2 This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia 15.4. An app with root privileges may be able to access private information.
CVE-2025-30371 - - Mar 28, 2025 Mar 28, 2025 2.1 LOW· v4 N/A· v3 N/A· v2 Metabase is a business intelligence and embedded analytics tool. Versions prior to v0.52.16.4, v1.52.16.4, v0.53.8, and v1.53.8 are vulnerable to circumvention of local link access protection in GeoJson endpoint. Self ho...Show more Metabase is a business intelligence and embedded analytics tool. Versions prior to v0.52.16.4, v1.52.16.4, v0.53.8, and v1.53.8 are vulnerable to circumvention of local link access protection in GeoJson endpoint. Self hosted Metabase instances that are using the GeoJson feature could be potentially impacted if their Metabase is colocated with other unsecured resources. This is fixed in v0.52.16.4, v1.52.16.4, v0.53.8, and v1.53.8. Migrating to Metabase Cloud or redeploying Metabase in a dedicated subnet with strict outbound port controls is an available workaround.Show less
CVE-2024-12905 - - Nov 3, 2025 Mar 27, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 An Improper Link Resolution Before File Access ("Link Following") and Improper Limitation of a Pathname to a Restricted Directory ("Path Traversal"). This vulnerability occurs when extracting a maliciously crafted tar fi...Show more An Improper Link Resolution Before File Access ("Link Following") and Improper Limitation of a Pathname to a Restricted Directory ("Path Traversal"). This vulnerability occurs when extracting a maliciously crafted tar file, which can result in unauthorized file writes or overwrites outside the intended extraction directory. The issue is associated with index.js in the tar-fs package. This issue affects tar-fs: from 0.0.0 before 1.16.4, from 2.0.0 before 2.1.2, from 3.0.0 before 3.0.8.Show less
CVE-2025-29795 1Microsoft 1Edge Update Jul 9, 2025 Mar 23, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Improper link resolution before file access ('link following') in Microsoft Edge (Chromium-based) allows an authorized attacker to elevate privileges locally.
CVE-2024-12390 1Binary Husky 1Gpt Academic Oct 15, 2025 Mar 20, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 A vulnerability in binary-husky/gpt_academic version git 310122f allows for remote code execution. The application supports the extraction of user-provided RAR files without proper validation. The Python rarfile module,...Show more A vulnerability in binary-husky/gpt_academic version git 310122f allows for remote code execution. The application supports the extraction of user-provided RAR files without proper validation. The Python rarfile module, which supports symlinks, can be exploited to perform arbitrary file writes. This can lead to remote code execution by writing to sensitive files such as SSH keys, crontab files, or the application's own code.Show less
CVE-2024-12216 - - Oct 15, 2025 Mar 20, 2025 N/A· v4 7.1 HIGH· v3 N/A· v2 A vulnerability in the `ImageClassificationDataset.from_csv()` API of the `dmlc/gluon-cv` repository, version 0.10.0, allows for arbitrary file write. The function downloads and extracts `tar.gz` files from URLs without...Show more A vulnerability in the `ImageClassificationDataset.from_csv()` API of the `dmlc/gluon-cv` repository, version 0.10.0, allows for arbitrary file write. The function downloads and extracts `tar.gz` files from URLs without proper sanitization, making it susceptible to a TarSlip vulnerability. Attackers can exploit this by crafting malicious tar files that, when extracted, can overwrite files on the victim's system via path traversal or faked symlinks.Show less
CVE-2024-10986 1Binary Husky 1Gpt Academic Oct 15, 2025 Mar 20, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 GPT Academic version 3.83 is vulnerable to a Local File Read (LFI) vulnerability through its HotReload function. This function can download and extract tar.gz files from arxiv.org. Despite implementing protections agains...Show more GPT Academic version 3.83 is vulnerable to a Local File Read (LFI) vulnerability through its HotReload function. This function can download and extract tar.gz files from arxiv.org. Despite implementing protections against path traversal, the application overlooks the Tarslip triggered by symlinks. This oversight allows attackers to read arbitrary local files from the victim server.Show less
CVE-2025-1683 11e 1Platform Jan 30, 2026 Mar 12, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Improper link resolution before file access in the Nomad module of the 1E Client, in versions prior to 25.3, enables an attacker with local unprivileged access on a Windows system to delete arbitrary files on the device...Show more Improper link resolution before file access in the Nomad module of the 1E Client, in versions prior to 25.3, enables an attacker with local unprivileged access on a Windows system to delete arbitrary files on the device by exploiting symbolic links.Show less
CVE-2025-25008 1Microsoft 5Windows Server 2016 Windows Server 2019Windows Server 2022+2 more Jul 1, 2025 Mar 11, 2025 N/A· v4 7.1 HIGH· v3 N/A· v2 Improper link resolution before file access ('link following') in Microsoft Windows allows an authorized attacker to elevate privileges locally.
CVE-2025-25185 1Binary Husky 1Gpt Academic Mar 7, 2025 Mar 3, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 GPT Academic provides interactive interfaces for large language models. In 3.91 and earlier, GPT Academic does not properly account for soft links. An attacker can create a malicious file as a soft link pointing to a tar...Show more GPT Academic provides interactive interfaces for large language models. In 3.91 and earlier, GPT Academic does not properly account for soft links. An attacker can create a malicious file as a soft link pointing to a target file, then package this soft link file into a tar.gz file and upload it. Subsequently, when accessing the decompressed file from the server, the soft link will point to the target file on the victim server. The vulnerability allows attackers to read all files on the server.Show less
CVE-2024-45418 1Zoom 4Meeting Software Development Kit RoomsVideo Software Development Kit+1 more Mar 4, 2025 Feb 25, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 Symlink following in the installer for some Zoom apps for macOS before version 6.1.5 may allow an authenticated user to conduct an escalation of privilege via network access.
CVE-2025-22480 1Dell 1Supportassist Os Recovery Sep 24, 2025 Feb 13, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Dell SupportAssist OS Recovery versions prior to 5.5.13.1 contain a symbolic link attack vulnerability. A low-privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary file...Show more Dell SupportAssist OS Recovery versions prior to 5.5.13.1 contain a symbolic link attack vulnerability. A low-privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary file deletion and Elevation of Privileges.Show less
CVE-2020-3432 1Cisco 1Anyconnect Secure Mobility Client Jun 24, 2025 Feb 12, 2025 N/A· v4 5.6 MEDIUM· v3 N/A· v2 A vulnerability in the uninstaller component of Cisco AnyConnect Secure Mobility Client for Mac OS could allow an authenticated, local attacker to corrupt the content of any file in the filesystem. The vulnerability is...Show more A vulnerability in the uninstaller component of Cisco AnyConnect Secure Mobility Client for Mac OS could allow an authenticated, local attacker to corrupt the content of any file in the filesystem. The vulnerability is due to the incorrect handling of directory paths. An attacker could exploit this vulnerability by creating a symbolic link (symlink) to a target file on a specific path. A successful exploit could allow the attacker to corrupt the contents of the file. If the file is a critical systems file, the exploit could lead to a denial of service condition. To exploit this vulnerability, the attacker would need to have valid credentials on the system.Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.Show less
CVE-2025-21420 1Microsoft 14Windows 10 1507 Windows 10 1607Windows 10 1809+11 more Feb 14, 2025 Feb 11, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows Disk Cleanup Tool Elevation of Privilege Vulnerability
CVE-2025-21419 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more Feb 14, 2025 Feb 11, 2025 N/A· v4 7.1 HIGH· v3 N/A· v2 Windows Setup Files Cleanup Elevation of Privilege Vulnerability
CVE-2025-21391 1Microsoft 13Windows 10 1507 Windows 10 1607Windows 10 1809+10 more Oct 27, 2025 Feb 11, 2025 N/A· v4 7.1 HIGH· v3 N/A· v2 Windows Storage Elevation of Privilege Vulnerability
CVE-2025-21373 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more Feb 26, 2025 Feb 11, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows Installer Elevation of Privilege Vulnerability
CVE-2025-21347 1Microsoft 14Windows 10 1507 Windows 10 1607Windows 10 1809+11 more Feb 28, 2025 Feb 11, 2025 N/A· v4 6.0 MEDIUM· v3 N/A· v2 Windows Deployment Services Denial of Service Vulnerability
CVE-2025-21322 1Microsoft 1Pc Manager Feb 28, 2025 Feb 11, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Microsoft PC Manager Elevation of Privilege Vulnerability
CVE-2025-21188 1Microsoft 1Azure Network Watcher Aug 25, 2025 Feb 11, 2025 N/A· v4 6.0 MEDIUM· v3 N/A· v2 Azure Network Watcher VM Extension Elevation of Privilege Vulnerability

Previous 1...121314...75 Next