Weaknesses of type CWE-59

628 results
CVE-2024-7233HIGHAvast Free Antivirus AvastSvc Link Following Local Privilege Escalation VulnerabilityEPSS 0.4%CVE-2024-8404HIGHArbitrary File Deletion in PaperCut NG/MF Web Print Hot folderEPSS 0.4%CVE-2024-7239HIGHVIPRE Advanced Security Link Following Local Privilege Escalation VulnerabilityEPSS 0.4%CVE-2019-18897HIGHLocal privilege escalation from user salt to rootEPSS 0.4%CVE-2025-55317HIGHMicrosoft AutoUpdate (MAU) Elevation of Privilege VulnerabilityEPSS 0.4%CVE-2025-55245HIGHXbox Gaming Services Elevation of Privilege VulnerabilityEPSS 0.4%CVE-2025-23010HIGHAn Improper Link Resolution Before File Access ('Link Following') vulnerability in SonicWall NetExtender Windows (32 and 64 bit) client whicEPSS 0.4%CVE-2024-7240HIGHF-Secure Total Link Following Local Privilege Escalation VulnerabilityEPSS 0.4%CVE-2019-18901MEDIUMmysql-systemd-helper allows setting 640 permissions of arbitrary filesEPSS 0.4%CVE-2024-5928HIGHVIPRE Advanced Security PMAgent Link Following Local Privilege Escalation VulnerabilityEPSS 0.4%CVE-2023-21725MEDIUMWindows Malicious Software Removal Tool Elevation of Privilege VulnerabilityEPSS 0.4%CVE-2023-27469Malwarebytes Anti-Exploit 4.4.0.220 is vulnerable to arbitrary file deletion and denial of service via an ALPC message in which FullFileNameEPSS 0.4%CVE-2025-29795HIGHMicrosoft Edge (Chromium-based) Update Elevation of Privilege VulnerabilityEPSS 0.4%CVE-2026-34604HIGH@tinacms/graphql's `FilesystemBridge` Path Validation Can Be Bypassed via Symlinks or JunctionsEPSS 0.4%CVE-2021-23177An improper link resolution flaw while extracting an archive can lead to changing the access control list (ACL) of the target of the link. AEPSS 0.4%CVE-2025-30371LOWMetabase vulnerable to circumvention of local link access protection in GeoJson endpointEPSS 0.4%CVE-2021-31566An improper link resolution flaw can occur while extracting an archive leading to changing modes, times, access control lists, and flags of EPSS 0.4%CVE-2004-1901MEDIUMPortage before 2.0.50-r3 allows local users to overwrite arbitrary files via a hard link attack on the lockfiles.EPSS 0.4%CVE-2026-41236HIGHFroxlor has privilege escalation in SSH key synchronization via symlinked `authorized_keys` pathEPSS 0.4%CVE-2020-2024MEDIUMKata Containers - Guests can trick the kata-runtime into unmounting any mount point on the hostEPSS 0.4%