Improper Link Resolution Before File Access ('Link Following')

The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

CVEs (1,502)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-7040 4Canonical DebianOpensuse+1 more 5Backports Sle Debian LinuxLeap+2 more Nov 21, 2024 Jan 21, 2020 N/A· v4 8.1 HIGH· v3 9.3 HIGH· v2 storeBackup.pl in storeBackup through 3.5 relies on the /tmp/storeBackup.lock pathname, which allows symlink attacks that possibly lead to privilege escalation. (Local users can also create a plain file named /tmp/storeB...Show more storeBackup.pl in storeBackup through 3.5 relies on the /tmp/storeBackup.lock pathname, which allows symlink attacks that possibly lead to privilege escalation. (Local users can also create a plain file named /tmp/storeBackup.lock to block use of storeBackup until an admin manually deletes that file.)Show less
CVE-2019-18932 2Opensuse Squid Analysis Report Generator Project 3Backports Sle LeapSquid Analysis Report Generator Nov 21, 2024 Jan 21, 2020 N/A· v4 7.0 HIGH· v3 4.4 MEDIUM· v2 log.c in Squid Analysis Report Generator (sarg) through 2.3.11 allows local privilege escalation. By default, it uses a fixed temporary directory /tmp/sarg. As the root user, sarg creates this directory or reuses an exis...Show more log.c in Squid Analysis Report Generator (sarg) through 2.3.11 allows local privilege escalation. By default, it uses a fixed temporary directory /tmp/sarg. As the root user, sarg creates this directory or reuses an existing one in an insecure manner. An attacker can pre-create the directory, and place symlinks in it (after winning a /tmp/sarg/denied.int_unsort race condition). The outcome will be corrupted or newly created files in privileged file system locations.Show less
CVE-2020-0638 1Microsoft 9Windows 10 1709 Windows 10 1803Windows 10 1809+6 more Oct 29, 2025 Jan 14, 2020 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 An elevation of privilege vulnerability exists in the way the Update Notification Manager handles files.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Update Noti...Show more An elevation of privilege vulnerability exists in the way the Update Notification Manager handles files.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Update Notification Manager Elevation of Privilege Vulnerability'.Show less
CVE-2020-0616 1Microsoft 3Windows 10 Windows Server 2016Windows Server 2019 Nov 21, 2024 Jan 14, 2020 N/A· v4 5.5 MEDIUM· v3 4.9 MEDIUM· v2 A denial of service vulnerability exists when Windows improperly handles hard links, aka 'Microsoft Windows Denial of Service Vulnerability'.
CVE-2015-3147 1Redhat 7Automatic Bug Reporting Tool Enterprise Linux DesktopEnterprise Linux Server+4 more Nov 21, 2024 Jan 14, 2020 N/A· v4 6.5 MEDIUM· v3 4.9 MEDIUM· v2 daemon/abrt-handle-upload.in in Automatic Bug Reporting Tool (ABRT), when moving problem reports from /var/spool/abrt-upload, allows local users to write to arbitrary files or possibly have other unspecified impact via a...Show more daemon/abrt-handle-upload.in in Automatic Bug Reporting Tool (ABRT), when moving problem reports from /var/spool/abrt-upload, allows local users to write to arbitrary files or possibly have other unspecified impact via a symlink attack on (1) /var/spool/abrt or (2) /var/tmp/abrt.Show less
CVE-2015-1869 1Redhat 1Automatic Bug Reporting Tool Nov 21, 2024 Jan 14, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 The default event handling scripts in Automatic Bug Reporting Tool (ABRT) allow local users to gain privileges as demonstrated by a symlink attack on a var_log_messages file.
CVE-2019-16896 1K7computing 1K7 Ultimate Security Nov 21, 2024 Dec 27, 2019 N/A· v4 7.8 HIGH· v3 2.1 LOW· v2 In K7 Ultimate Security 16.0.0117, the module K7BKCExt.dll (aka the backup module) improperly validates the administrative privileges of the user, allowing an arbitrary file write via a symbolic link attack with file res...Show more In K7 Ultimate Security 16.0.0117, the module K7BKCExt.dll (aka the backup module) improperly validates the administrative privileges of the user, allowing an arbitrary file write via a symbolic link attack with file restoration functionality.Show less
CVE-2019-19695 1Trendmicro 1Antivirus+ Nov 21, 2024 Dec 24, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 A privilege escalation vulnerability in Trend Micro Antivirus for Mac 2019 (v9.0.1379 and below) could potentially allow an attacker to create a symbolic link to a target file and modify it.
CVE-2019-8463 1Checkpoint 1Endpoint Security Clients Nov 21, 2024 Dec 23, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 A denial of service vulnerability was reported in Check Point Endpoint Security Client for Windows before E82.10, that could allow service log file to be written to non-standard locations.
CVE-2019-6679 1F5 13Big Ip Access Policy Manager Big Ip Advanced Firewall ManagerBig Ip Analytics+10 more Nov 21, 2024 Dec 23, 2019 N/A· v4 3.3 LOW· v3 3.6 LOW· v2 On BIG-IP versions 15.0.0-15.0.1, 14.1.0.2-14.1.2.2, 14.0.0.5-14.0.1, 13.1.1.5-13.1.3.1, 12.1.4.1-12.1.5, 11.6.4-11.6.5, and 11.5.9-11.5.10, the access controls implemented by scp.whitelist and scp.blacklist are not prop...Show more On BIG-IP versions 15.0.0-15.0.1, 14.1.0.2-14.1.2.2, 14.0.0.5-14.0.1, 13.1.1.5-13.1.3.1, 12.1.4.1-12.1.5, 11.6.4-11.6.5, and 11.5.9-11.5.10, the access controls implemented by scp.whitelist and scp.blacklist are not properly enforced for paths that are symlinks. This allows authenticated users with SCP access to overwrite certain configuration files that would otherwise be restricted.Show less
CVE-2019-19693 1Trendmicro 4Antivirus+ Security 2020 Internet Security 2020Maximum Security 2020+1 more Nov 21, 2024 Dec 20, 2019 N/A· v4 7.1 HIGH· v3 3.6 LOW· v2 The Trend Micro Security 2020 consumer family of products contains a vulnerability that could allow a local attacker to disclose sensitive information or to create a denial-of-service condition on affected installations....Show more The Trend Micro Security 2020 consumer family of products contains a vulnerability that could allow a local attacker to disclose sensitive information or to create a denial-of-service condition on affected installations. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.Show less
CVE-2019-8789 1Apple 3Ipados Iphone OsMac Os X Nov 21, 2024 Dec 18, 2019 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in iOS 13.2 and iPadOS 13.2, macOS Catalina 10.15.1. Parsing a maliciously crafte...Show more A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in iOS 13.2 and iPadOS 13.2, macOS Catalina 10.15.1. Parsing a maliciously crafted iBooks file may lead to disclosure of user information.Show less
CVE-2019-8568 1Apple 4Iphone Os Mac Os XTvos+1 more Nov 21, 2024 Dec 18, 2019 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. A local user may be...Show more A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. A local user may be able to modify protected parts of the file system.Show less
CVE-2019-10773 1Yarnpkg 1Yarn Nov 21, 2024 Dec 16, 2019 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 In Yarn before 1.21.1, the package install functionality can be abused to generate arbitrary symlinks on the host filesystem by using specially crafted "bin" keys. Existing files could be overwritten depending on the cur...Show more In Yarn before 1.21.1, the package install functionality can be abused to generate arbitrary symlinks on the host filesystem by using specially crafted "bin" keys. Existing files could be overwritten depending on the current user permission set.Show less
CVE-2019-16775 5Fedoraproject NpmjsOpensuse+2 more 6Enterprise Linux Enterprise Linux EusFedora+3 more Nov 21, 2024 Dec 13, 2019 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 Versions of the npm CLI prior to 6.13.3 are vulnerable to an Arbitrary File Write. It is possible for packages to create symlinks to files outside of thenode_modules folder through the bin field upon installation. A prop...Show more Versions of the npm CLI prior to 6.13.3 are vulnerable to an Arbitrary File Write. It is possible for packages to create symlinks to files outside of thenode_modules folder through the bin field upon installation. A properly constructed entry in the package.json bin field would allow a package publisher to create a symlink pointing to arbitrary files on a user's system when the package is installed. This behavior is still possible through install scripts. This vulnerability bypasses a user using the --ignore-scripts install option.Show less
CVE-2019-18232 1Gemalto 1Sentinel Ldk License Manager Nov 21, 2024 Dec 11, 2019 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 SafeNet Sentinel LDK License Manager, all versions prior to 7.101(only Microsoft Windows versions are affected) is vulnerable when configured as a service. This vulnerability may allow an attacker with local access to cr...Show more SafeNet Sentinel LDK License Manager, all versions prior to 7.101(only Microsoft Windows versions are affected) is vulnerable when configured as a service. This vulnerability may allow an attacker with local access to create, write, and/or delete files in system folder using symbolic links, leading to a privilege escalation. This vulnerability could also be used by an attacker to execute a malicious DLL, which could impact the integrity and availability of the system.Show less
CVE-2019-1483 1Microsoft 3Windows 10 Windows Server 2016Windows Server 2019 Nov 21, 2024 Dec 10, 2019 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka...Show more An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1476.Show less
CVE-2013-4184 2Data\ Debian 2\ Debian Linux Nov 21, 2024 Dec 10, 2019 N/A· v4 5.5 MEDIUM· v3 3.6 LOW· v2 Perl module Data::UUID from CPAN version 1.219 vulnerable to symlink attacks
CVE-2019-18575 1Dell 1Command\|configure Nov 21, 2024 Dec 6, 2019 N/A· v4 7.1 HIGH· v3 6.6 MEDIUM· v2 Dell Command Configure versions prior to 4.2.1 contain an uncontrolled search path vulnerability. A locally authenticated malicious user could exploit this vulnerability by creating a symlink to a target file, allowing t...Show more Dell Command Configure versions prior to 4.2.1 contain an uncontrolled search path vulnerability. A locally authenticated malicious user could exploit this vulnerability by creating a symlink to a target file, allowing the attacker to overwrite or corrupt a specified file on the system.Show less
CVE-2019-7183 1Qnap 1Qts Nov 21, 2024 Dec 5, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 This improper link resolution vulnerability allows remote attackers to access system files. To fix this vulnerability, QNAP recommend updating QTS to their latest versions.

Previous 1...424344...76 Next