Weaknesses of type CWE-59
629 resultsCVE-2025-30640HIGHA link following vulnerability in Trend Micro Deep Security 20.0 agents could allow a local attacker to escalate privileges on affected instEPSS 0.2%CVE-2025-43490HIGHHP Hotkey Support – Escalation of PrivilegeEPSS 0.1%CVE-2026-21419MEDIUMDell Display and Peripheral Manager (Windows) versions prior to 2.2 contain an Improper Link Resolution Before File Access ('Link Following'EPSS 0.1%CVE-2026-43989HIGHJunoClaw: upload_wasm accepted arbitrary filesystem paths without validationEPSS 0.1%CVE-2025-12838HIGHMSP360 Free Backup Link Following Local Privilege Escalation VulnerabilityEPSS 0.1%CVE-2026-33694HIGHJunction File ManipulationEPSS 0.1%CVE-2025-7012HIGHCato Networks Linux Client Local Privilege Escalation via SymlinkEPSS 0.1%CVE-2026-34883MEDIUMAn issue was discovered in the Portrait Dell Color Management application before 3.7.0 for Dell monitors. On Windows, a symbolic link vulnerEPSS 0.1%CVE-2024-13961HIGHAvast Cleanup Premium TuneupSvc Link Following Local Privilege Escalation VulnerabilityEPSS 0.1%CVE-2024-13960HIGHLink Following Local Privilege Escalation Vulnerability in AVG TuneUp Version 23.4EPSS 0.1%CVE-2025-29983MEDIUMDell Trusted Device, versions prior to 7.0.3.0, contain an Improper Link Resolution Before File Access ('Link Following') vulnerability. A lEPSS 0.1%CVE-2025-2102MEDIUMImproper Link Resolution Before File Access ('Link Following') vulnerability in HYPR Passwordless on Windows allows Privilege Escalation.ThiEPSS 0.1%CVE-2025-3771HIGHA path or symbolic link manipulation vulnerability in SIR 1.0.3 and prior versions allows an authenticated non-admin local user to overwriteEPSS 0.1%CVE-2025-46293MEDIUMThis issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia 15.4. An app may be able to access protectEPSS 0.1%CVE-2025-7073HIGHLocal Privilege Escalation via Arbitrary File Operation in Bitdefender Total SecurityEPSS 0.1%CVE-2026-7397MEDIUMNousResearch hermes-agent file_tools.py _check_sensitive_path symlinkEPSS 0.1%CVE-2026-34452MEDIUMClaude SDK for Python: Memory Tool Path Validation Race Condition Allows Sandbox EscapeEPSS 0.1%CVE-2024-13944HIGHLink Following Local Privilege Escalation Vulnerability in NortonUtilitiesSvc in Norton Utilities Ultimate (Also affects Avast CleanUp and AVG TuneUp)EPSS 0.1%CVE-2026-43619HIGHRsync < 3.4.3 Symlink Race Condition via Path-Based SyscallsEPSS 0.1%CVE-2025-30642MEDIUMA link following vulnerability in Trend Micro Deep Security 20.0 agents could allow a local attacker to create a denial of service (DoS) sitEPSS 0.1%