Fallos del tipo CWE-59
613 resultadosCVE-2022-30333HIGHRARLAB UnRAR before 6.12 on Linux and UNIX allows directory traversal to write to files during an extract (aka unpack) operation, as demonstEPSS 99.0%KEVCVE-2021-21300HIGHmalicious repositories can execute remote code while cloningEPSS 88.6%CVE-2020-36193HIGHTar.php in Archive_Tar through 1.4.11 allows write operations with Directory Traversal due to inadequate checking of symbolic links, a relatEPSS 70.6%KEVCVE-2020-0787HIGHAn elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) improperly handles symbolic lEPSS 42.5%KEVCVE-2022-21999HIGHWindows Print Spooler Elevation of Privilege VulnerabilityEPSS 41.7%KEVCVE-2019-0841HIGHAn elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows ElEPSS 41.7%KEVCVE-2023-36874HIGHWindows Error Reporting Service Elevation of Privilege VulnerabilityEPSS 32.3%KEVCVE-2021-41379MEDIUMWindows Installer Elevation of Privilege VulnerabilityEPSS 20.3%KEVCVE-2024-53691HIGHQTS, QuTS heroEPSS 20.1%CVE-2024-26158HIGHMicrosoft Install Service Elevation of Privilege VulnerabilityEPSS 12.3%CVE-2019-1253HIGHAn elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.To exploit this vulnerabEPSS 11.6%KEVCVE-2015-1130HIGHThe XPC implementation in Admin Framework in Apple OS X before 10.10.3 allows local users to bypass authentication and obtain admin privilegEPSS 9.9%KEVCVE-2023-35633HIGHWindows Kernel Elevation of Privilege VulnerabilityEPSS 8.7%CVE-2026-41091HIGHMicrosoft Defender Elevation of Privilege VulnerabilityEPSS 8.4%KEVCVE-2023-36399HIGHWindows Storage Elevation of Privilege VulnerabilityEPSS 8.3%CVE-2020-0683HIGHAn elevation of privilege vulnerability exists in the Windows Installer when MSI packages process symbolic links, aka 'Windows Installer EleEPSS 7.7%KEVCVE-2023-36391HIGHLocal Security Authority Subsystem Service Elevation of Privilege VulnerabilityEPSS 7.2%CVE-2024-28189CRITICALJudge0 vulnerable to Sandbox Escape Patch Bypass via chown running on Symbolic LinkEPSS 7.2%CVE-2024-28185CRITICALJudge0 vulnerable to Sandbox Escape via Symbolic LinkEPSS 7.1%CVE-2019-1064HIGHWindows Elevation of Privilege VulnerabilityEPSS 6.9%KEV