Improper Link Resolution Before File Access ('Link Following')

The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

CVEs (1,502)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-27469 1Malwarebytes 1Anti Exploit Nov 26, 2024 Jun 30, 2023 N/A· v4 7.1 HIGH· v3 N/A· v2 Malwarebytes Anti-Exploit 4.4.0.220 is vulnerable to arbitrary file deletion and denial of service via an ALPC message in which FullFileNamePath lacks a '\0' character.
CVE-2023-32556 1Trendmicro 1Apex One Nov 21, 2024 Jun 26, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A link following vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to disclose sensitive information. Please note: an attacker must first obtain the ability to exec...Show more A link following vulnerability in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to disclose sensitive information. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.Show less
CVE-2023-28065 1Dell 3Alienware Update Command UpdateUpdate Nov 21, 2024 Jun 23, 2023 N/A· v4 7.3 HIGH· v3 N/A· v2 Dell Command \| Update, Dell Update, and Alienware Update versions 4.8.0 and prior contain an Insecure Operation on Windows Junction / Mount Point vulnerability. A local malicious user could potentially exploit this vuln...Show more Dell Command \| Update, Dell Update, and Alienware Update versions 4.8.0 and prior contain an Insecure Operation on Windows Junction / Mount Point vulnerability. A local malicious user could potentially exploit this vulnerability leading to privilege escalation. Show less
CVE-2023-28071 1Dell 3Alienware Update Command UpdateUpdate Nov 21, 2024 Jun 23, 2023 N/A· v4 7.1 HIGH· v3 N/A· v2 Dell Command \| Update, Dell Update, and Alienware Update versions 4.9.0, A01 and prior contain an Insecure Operation on Windows Junction / Mount Point vulnerability. A local malicious user could potentially exploit this...Show more Dell Command \| Update, Dell Update, and Alienware Update versions 4.9.0, A01 and prior contain an Insecure Operation on Windows Junction / Mount Point vulnerability. A local malicious user could potentially exploit this vulnerability to create arbitrary folder leading to permanent Denial of Service (DOS). Show less
CVE-2023-32012 1Microsoft 4Windows 10 21h2 Windows 10 22h2Windows 11 21h2+1 more Nov 21, 2024 Jun 14, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows Container Manager Service Elevation of Privilege Vulnerability
CVE-2023-29351 1Microsoft 12Windows 10 1507 Windows 10 1607Windows 10 1809+9 more Apr 8, 2025 Jun 14, 2023 N/A· v4 8.1 HIGH· v3 N/A· v2 Windows Group Policy Elevation of Privilege Vulnerability
CVE-2023-33865 1Renderdoc 1Renderdoc Nov 3, 2025 Jun 7, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 RenderDoc before 1.27 allows local privilege escalation via a symlink attack. It relies on the /tmp/RenderDoc directory regardless of ownership.
CVE-2023-2939 1Google 1Chrome May 5, 2025 May 30, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Insufficient data validation in Installer in Google Chrome on Windows prior to 114.0.5735.90 allowed a local attacker to perform privilege escalation via crafted symbolic link. (Chromium security severity: Medium)
CVE-2023-33245 1Minecraft 1Minecraft Jan 10, 2025 May 30, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Minecraft through 1.19 and 1.20 pre-releases before 7 (Java) allow arbitrary file overwrite, and possibly code execution, via crafted world data that contains a symlink.
CVE-2023-34204 1Imapsync Project 1Imapsync Jan 10, 2025 May 30, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 imapsync through 2.229 uses predictable paths under /tmp and /var/tmp in its default mode of operation. Both of these are typically world-writable, and thus (for example) an attacker can modify imapsync's cache and overw...Show more imapsync through 2.229 uses predictable paths under /tmp and /var/tmp in its default mode of operation. Both of these are typically world-writable, and thus (for example) an attacker can modify imapsync's cache and overwrite files belonging to the user who runs it.Show less
CVE-2023-27529 1Wacom 1Tablet Driver Installer Jan 16, 2025 May 25, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Wacom Tablet Driver installer prior to 6.4.2-1 (for macOS) contains an improper link resolution before file access vulnerability. When a user is tricked to execute a small malicious script before executing the affected v...Show more Wacom Tablet Driver installer prior to 6.4.2-1 (for macOS) contains an improper link resolution before file access vulnerability. When a user is tricked to execute a small malicious script before executing the affected version of the installer, arbitrary code may be executed with the root privilege.Show less
CVE-2023-29343 1Microsoft 1Windows Sysmon Nov 21, 2024 May 9, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 SysInternals Sysmon for Windows Elevation of Privilege Vulnerability
CVE-2023-24904 1Microsoft 1Windows Server 2008 Nov 21, 2024 May 9, 2023 N/A· v4 7.1 HIGH· v3 N/A· v2 Windows Installer Elevation of Privilege Vulnerability
CVE-2022-38730 1Docker 1Desktop Jan 31, 2025 Apr 27, 2023 N/A· v4 6.3 MEDIUM· v3 N/A· v2 Docker Desktop for Windows before 4.6 allows attackers to overwrite any file through the windowscontainers/start dockerBackendV2 API by controlling the data-root field inside the DaemonJSON field in the WindowsContainerS...Show more Docker Desktop for Windows before 4.6 allows attackers to overwrite any file through the windowscontainers/start dockerBackendV2 API by controlling the data-root field inside the DaemonJSON field in the WindowsContainerStartRequest class. This allows exploiting a symlink vulnerability in ..\dataRoot\network\files\local-kv.db because of a TOCTOU race condition.Show less
CVE-2022-34292 1Docker 1Desktop Jan 31, 2025 Apr 27, 2023 N/A· v4 7.1 HIGH· v3 N/A· v2 Docker Desktop for Windows before 4.6.0 allows attackers to overwrite any file through a symlink attack on the hyperv/create dockerBackendV2 API by controlling the DataFolder parameter for DockerDesktop.vhdx, a similar i...Show more Docker Desktop for Windows before 4.6.0 allows attackers to overwrite any file through a symlink attack on the hyperv/create dockerBackendV2 API by controlling the DataFolder parameter for DockerDesktop.vhdx, a similar issue to CVE-2022-31647.Show less
CVE-2022-31647 1Docker 1Desktop Jan 31, 2025 Apr 27, 2023 N/A· v4 7.1 HIGH· v3 N/A· v2 Docker Desktop before 4.6.0 on Windows allows attackers to delete any file through the hyperv/destroy dockerBackendV2 API via a symlink in the DataFolder parameter, a different vulnerability than CVE-2022-26659.
CVE-2023-28141 1Qualys 1Cloud Agent Nov 21, 2024 Apr 18, 2023 N/A· v4 6.3 MEDIUM· v3 N/A· v2 An NTFS Junction condition exists in the Qualys Cloud Agent for Windows platform in versions before 4.8.0.31. Attackers may write files to arbitrary locations via a local attack vector. This allows attackers to assume t...Show more An NTFS Junction condition exists in the Qualys Cloud Agent for Windows platform in versions before 4.8.0.31. Attackers may write files to arbitrary locations via a local attack vector. This allows attackers to assume the privileges of the process, and they may delete or otherwise on unauthorized files, allowing for the potential modification or deletion of sensitive files limited only to that specific directory/file object. This vulnerability is bounded to the time of installation/uninstallation and can only be exploited locally. At the time of this disclosure, versions before 4.0 are classified as End of Life. Show less
CVE-2023-28972 1Juniper 1Junos Nov 21, 2024 Apr 17, 2023 N/A· v4 6.8 MEDIUM· v3 N/A· v2 An Improper Link Resolution Before File Access vulnerability in console port access of Juniper Networks Junos OS on NFX Series allows an attacker to bypass console access controls. When "set system ports console insecure...Show more An Improper Link Resolution Before File Access vulnerability in console port access of Juniper Networks Junos OS on NFX Series allows an attacker to bypass console access controls. When "set system ports console insecure" is enabled, root login is disallowed for Junos OS as expected. However, the root password can be changed using "set system root-authentication plain-text-password" on NFX Series systems, leading to a possible administrative bypass with physical access to the console. Password recovery, changing the root password from a console, should not have been allowed from an insecure console. This is similar to the vulnerability described in CVE-2019-0035 but affects different platforms and in turn requires a different fix. This issue affects Juniper Networks Junos OS on NFX Series: 19.2 versions prior to 19.2R3-S7; 19.3 versions prior to 19.3R3-S8; 19.4 versions prior to 19.4R3-S12; 20.2 versions prior to 20.2R3-S8; 20.4 versions prior to 20.4R3-S7; 21.1 versions prior to 21.1R3-S5; 21.2 versions prior to 21.2R3-S4; 21.3 versions prior to 21.3R3-S3; 21.4 versions prior to 21.4R3-S2; 22.1 versions prior to 22.1R3-S1; 22.2 versions prior to 22.2R2-S1, 22.2R3; 22.3 versions prior to 22.3R1-S2, 22.3R2.Show less
CVE-2023-28222 1Microsoft 13Windows 10 1507 Windows 10 1607Windows 10 1809+10 more Nov 21, 2024 Apr 11, 2023 N/A· v4 7.1 HIGH· v3 N/A· v2 Windows Kernel Elevation of Privilege Vulnerability
CVE-2022-43293 1Wacom 1Driver Feb 11, 2025 Apr 11, 2023 N/A· v4 5.9 MEDIUM· v3 N/A· v2 Wacom Driver 6.3.46-1 for Windows was discovered to contain an arbitrary file write vulnerability via the component \Wacom\Wacom_Tablet.exe.

Previous 1...242526...76 Next