Improper Link Resolution Before File Access ('Link Following')

The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

CVEs (1,502)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2012-1093 1Debian 2Debian Linux X11 Common Nov 21, 2024 Feb 21, 2020 N/A· v4 7.8 HIGH· v3 6.9 MEDIUM· v2 The init script in the Debian x11-common package before 1:7.6+12 is vulnerable to a symlink attack that can lead to a privilege escalation during package installation.
CVE-2020-5324 1Dell 113G3 15 3590 Firmware G3 3579 FirmwareG3 3779 Firmware+110 more Nov 21, 2024 Feb 21, 2020 N/A· v4 4.4 MEDIUM· v3 2.6 LOW· v2 Dell Client Consumer and Commercial Platforms contain an Arbitrary File Overwrite Vulnerability. The vulnerability is limited to the Dell Firmware Update Utility during the time window while being executed by an administ...Show more Dell Client Consumer and Commercial Platforms contain an Arbitrary File Overwrite Vulnerability. The vulnerability is limited to the Dell Firmware Update Utility during the time window while being executed by an administrator. During this time window, a locally authenticated low-privileged malicious user could exploit this vulnerability by tricking an administrator into overwriting arbitrary files via a symlink attack. The vulnerability does not affect the actual binary payload that the update utility delivers.Show less
CVE-2020-8950 1Amd 1User Experience Program Nov 21, 2024 Feb 12, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 The AUEPLauncher service in Radeon AMD User Experience Program Launcher through 1.0.0.1 on Windows allows elevation of privilege by placing a crafted file in %PROGRAMDATA%\AMD\PPC\upload and then creating a symbolic link...Show more The AUEPLauncher service in Radeon AMD User Experience Program Launcher through 1.0.0.1 on Windows allows elevation of privilege by placing a crafted file in %PROGRAMDATA%\AMD\PPC\upload and then creating a symbolic link in %PROGRAMDATA%\AMD\PPC\temp that points to an arbitrary folder with an arbitrary file name.Show less
CVE-2020-0730 1Microsoft 8Windows 10 Windows 7Windows 8.1+5 more Nov 21, 2024 Feb 11, 2020 N/A· v4 7.1 HIGH· v3 3.6 LOW· v2 An elevation of privilege vulnerability exists when the Windows User Profile Service (ProfSvc) improperly handles symlinks, aka 'Windows User Profile Service Elevation of Privilege Vulnerability'.
CVE-2020-0683 1Microsoft 17Windows 10 1507 Windows 10 1607Windows 10 1709+14 more Oct 29, 2025 Feb 11, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process symbolic links, aka 'Windows Installer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0686.
CVE-2019-11481 2Apport Project Canonical 2Apport Ubuntu Linux Nov 21, 2024 Feb 8, 2020 N/A· v4 7.8 HIGH· v3 6.1 MEDIUM· v2 Kevin Backhouse discovered that apport would read a user-supplied configuration file with elevated privileges. By replacing the file with a symbolic link, a user could get apport to read any file on the system as root, w...Show more Kevin Backhouse discovered that apport would read a user-supplied configuration file with elevated privileges. By replacing the file with a symbolic link, a user could get apport to read any file on the system as root, with unknown consequences.Show less
CVE-2020-7221 1Mariadb 1Mariadb Nov 21, 2024 Feb 4, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 mysql_install_db in MariaDB 10.4.7 through 10.4.11 allows privilege escalation from the mysql user account to root because chown and chmod are performed unsafely, as demonstrated by a symlink attack on a chmod 04755 of a...Show more mysql_install_db in MariaDB 10.4.7 through 10.4.11 allows privilege escalation from the mysql user account to root because chown and chmod are performed unsafely, as demonstrated by a symlink attack on a chmod 04755 of auth_pam_tool_dir/auth_pam_tool. NOTE: this does not affect the Oracle MySQL product, which implements mysql_install_db differently.Show less
CVE-2019-11251 1Kubernetes 1Kubernetes Nov 21, 2024 Feb 3, 2020 N/A· v4 5.7 MEDIUM· v3 4.3 MEDIUM· v2 The Kubernetes kubectl cp command in versions 1.1-1.12, and versions prior to 1.13.11, 1.14.7, and 1.15.4 allows a combination of two symlinks provided by tar output of a malicious container to place a file outside of th...Show more The Kubernetes kubectl cp command in versions 1.1-1.12, and versions prior to 1.13.11, 1.14.7, and 1.15.4 allows a combination of two symlinks provided by tar output of a malicious container to place a file outside of the destination directory specified in the kubectl cp invocation. This could be used to allow an attacker to place a nefarious file using a symlink, outside of the destination tree.Show less
CVE-2011-4116 1Cpan 1File\ Aug 4, 2025 Jan 31, 2020 N/A· v4 3.3 LOW· v3 1.5 LOW· v2 _is_safe in the File::Temp module for Perl does not properly handle symlinks.
CVE-2020-8095 1Bitdefender 1Total Security 2020 Nov 21, 2024 Jan 30, 2020 N/A· v4 5.5 MEDIUM· v3 4.9 MEDIUM· v2 A vulnerability in the improper handling of junctions before deletion in Bitdefender Total Security 2020 can allow an attacker to to trigger a denial of service on the affected device.
CVE-2013-1867 1Apple 1Tokend Nov 21, 2024 Jan 30, 2020 N/A· v4 6.1 MEDIUM· v3 6.3 MEDIUM· v2 Gemalto Tokend 2013 has an Arbitrary File Creation/Overwrite Vulnerability
CVE-2013-1866 1Opensc Project 1Opensc Nov 21, 2024 Jan 30, 2020 N/A· v4 6.1 MEDIUM· v3 6.3 MEDIUM· v2 OpenSC OpenSC.tokend has an Arbitrary File Creation/Overwrite Vulnerability
CVE-2012-6114 1Git Extras Project 1Git Extras Nov 21, 2024 Jan 28, 2020 N/A· v4 5.5 MEDIUM· v3 3.6 LOW· v2 The git-changelog utility in git-extras 1.7.0 allows local users to overwrite arbitrary files via a symlink attack on (1) /tmp/changelog or (2) /tmp/.git-effort.
CVE-2019-3699 1Privoxy 1Privoxy Nov 21, 2024 Jan 24, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of privoxy on openSUSE Leap 15.1, Factory allows local attackers to escalate from user privoxy to root. This issue affects: openSUSE Leap 15.1 privoxy...Show more UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of privoxy on openSUSE Leap 15.1, Factory allows local attackers to escalate from user privoxy to root. This issue affects: openSUSE Leap 15.1 privoxy version 3.0.28-lp151.1.1 and prior versions. openSUSE Factory privoxy version 3.0.28-2.1 and prior versions.Show less
CVE-2019-3697 2Gnu Opensuse 2Gnump3d Leap Nov 21, 2024 Jan 24, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of gnump3d in openSUSE Leap 15.1 allows local attackers to escalate from user gnump3d to root. This issue affects: openSUSE Leap 15.1 gnump3d version...Show more UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of gnump3d in openSUSE Leap 15.1 allows local attackers to escalate from user gnump3d to root. This issue affects: openSUSE Leap 15.1 gnump3d version 3.0-lp151.2.1 and prior versions.Show less
CVE-2019-3694 2Opensuse Suse 2Munin Munin Nov 21, 2024 Jan 24, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 A Symbolic Link (Symlink) Following vulnerability in the packaging of munin in openSUSE Factory, Leap 15.1 allows local attackers to escalate from user munin to root. This issue affects: openSUSE Factory munin version 2....Show more A Symbolic Link (Symlink) Following vulnerability in the packaging of munin in openSUSE Factory, Leap 15.1 allows local attackers to escalate from user munin to root. This issue affects: openSUSE Factory munin version 2.0.49-4.2 and prior versions. openSUSE Leap 15.1 munin version 2.0.40-lp151.1.1 and prior versions.Show less
CVE-2019-3693 2Opensuse Suse 2Backports Sle Mailman Nov 21, 2024 Jan 24, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 A symlink following vulnerability in the packaging of mailman in SUSE Linux Enterprise Server 11, SUSE Linux Enterprise Server 12; openSUSE Leap 15.1 allowed local attackers to escalate their privileges from user wwwrun...Show more A symlink following vulnerability in the packaging of mailman in SUSE Linux Enterprise Server 11, SUSE Linux Enterprise Server 12; openSUSE Leap 15.1 allowed local attackers to escalate their privileges from user wwwrun to root. Additionally arbitrary files could be changed to group mailman. This issue affects: SUSE Linux Enterprise Server 11 mailman versions prior to 2.1.15-9.6.15.1. SUSE Linux Enterprise Server 12 mailman versions prior to 2.1.17-3.11.1. openSUSE Leap 15.1 mailman version 2.1.29-lp151.2.14 and prior versions.Show less
CVE-2019-3692 2Opensuse Suse 3Backports Sle InnLeap Nov 21, 2024 Jan 24, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 The packaging of inn on SUSE Linux Enterprise Server 11; openSUSE Factory, Leap 15.1 allows local attackers to escalate from user inn to root via symlink attacks. This issue affects: SUSE Linux Enterprise Server 11 inn v...Show more The packaging of inn on SUSE Linux Enterprise Server 11; openSUSE Factory, Leap 15.1 allows local attackers to escalate from user inn to root via symlink attacks. This issue affects: SUSE Linux Enterprise Server 11 inn version 2.4.2-170.21.3.1 and prior versions. openSUSE Factory inn version 2.6.2-2.2 and prior versions. openSUSE Leap 15.1 inn version 2.5.4-lp151.2.47 and prior versions.Show less
CVE-2019-3691 1Opensuse 1Munge Nov 21, 2024 Jan 23, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 A Symbolic Link (Symlink) Following vulnerability in the packaging of munge in SUSE Linux Enterprise Server 15; openSUSE Factory allowed local attackers to escalate privileges from user munge to root. This issue affects:...Show more A Symbolic Link (Symlink) Following vulnerability in the packaging of munge in SUSE Linux Enterprise Server 15; openSUSE Factory allowed local attackers to escalate privileges from user munge to root. This issue affects: SUSE Linux Enterprise Server 15 munge versions prior to 0.5.13-4.3.1. openSUSE Factory munge versions prior to 0.5.13-6.1.Show less
CVE-2019-18898 2Opensuse Suse 2Leap Trousers Nov 21, 2024 Jan 23, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 UNIX Symbolic Link (Symlink) Following vulnerability in the trousers package of SUSE Linux Enterprise Server 15 SP1; openSUSE Factory allowed local attackers escalate privileges from user tss to root. This issue affects:...Show more UNIX Symbolic Link (Symlink) Following vulnerability in the trousers package of SUSE Linux Enterprise Server 15 SP1; openSUSE Factory allowed local attackers escalate privileges from user tss to root. This issue affects: SUSE Linux Enterprise Server 15 SP1 trousers versions prior to 0.3.14-6.3.1. openSUSE Factory trousers versions prior to 0.3.14-7.1.Show less

Previous 1...414243...76 Next