Fallos del tipo CWE-59
622 resultadosCVE-2020-14367—A flaw was found in chrony versions before 3.5.1 when creating the PID file under the /var/run/chrony folder. The file is created during chrEPSS 0.5%CVE-2020-28935—Local symlink attack in Unbound and NSDEPSS 0.5%CVE-2019-18898HIGHtrousers: Local privilege escalation from tss to rootEPSS 0.5%CVE-2026-42496CRITICALArchive::Tar versions before 3.08 for Perl extract symlinks with attacker controlled targets outside the extraction directoryEPSS 0.5%CVE-2021-35939—It was found that the fix for CVE-2017-7500 and CVE-2017-7501 was incomplete: the check was only implemented for the parent directory of theEPSS 0.5%CVE-2023-32053HIGHWindows Installer Elevation of Privilege VulnerabilityEPSS 0.5%CVE-2026-44051HIGHArbitrary file read via attacker-controlled symlink creationEPSS 0.5%CVE-2026-2808MEDIUMConsul vulnerable to arbitrary file reads through the vault kubernetes authentication providerEPSS 0.5%CVE-2020-2026HIGHKata Containers - Guests can trick the kata-runtime into mounting the container image on any host pathEPSS 0.5%CVE-2026-52811CRITICALGogs: UploadRepoFiles writes outside repo working tree via committed parent symEPSS 0.5%CVE-2024-23459HIGHMultiple Arbitrary Creates/Overwrites by link followingEPSS 0.5%CVE-2025-59510MEDIUMWindows Routing and Remote Access Service (RRAS) Denial of Service VulnerabilityEPSS 0.5%CVE-2013-4392MEDIUMsystemd, when updating file permissions, allows local users to change the permissions and SELinux security contexts for arbitrary files via EPSS 0.5%CVE-2025-49680HIGHWindows Performance Recorder (WPR) Denial of Service VulnerabilityEPSS 0.5%CVE-2026-41397HIGHOpenClaw < 2026.3.31 - Sandbox Escape via Unrestricted File Sync and Symlink TraversalEPSS 0.5%CVE-2026-24056MEDIUMpnpm has symlink traversal in file:/git dependenciesEPSS 0.5%CVE-2023-24930HIGHMicrosoft OneDrive for MacOS Elevation of Privilege VulnerabilityEPSS 0.5%CVE-2020-8095MEDIUMBitdefender Total Security Link Resolution Denial-of-Service VulnerabilityEPSS 0.5%CVE-2023-42137HIGHPAX Android based POS devices with PayDroid_8.1.0_Sagittarius_V11.1.50_20230614 or earlier can allow for command execution with high privileEPSS 0.5%CVE-2024-52050HIGHA LogServer arbitrary file creation vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected inEPSS 0.5%