Fallos del tipo CWE-59
629 resultadosCVE-2025-69431MEDIUMThe ZSPACE Q2C NAS contains a vulnerability related to incorrect symbolic link following. Attackers can format a USB drive to ext4, create aEPSS 0.3%CVE-2025-24136MEDIUMThis issue was addressed with improved validation of symlinks. This issue is fixed in macOS Sequoia 15.3, macOS Sonoma 14.7.3, macOS VenturaEPSS 0.3%CVE-2025-32817MEDIUMA Improper Link Resolution vulnerability (CWE-59) in the SonicWall Connect Tunnel Windows (32 and 64 bit) client, this results in unauthorizEPSS 0.3%CVE-2022-32905HIGHThis issue was addressed with improved validation of symlinks. This issue is fixed in macOS Ventura 13. Processing a maliciously crafted DMGEPSS 0.3%CVE-2024-44273MEDIUMThis issue was addressed with improved handling of symlinks. This issue is fixed in iOS 18.1 and iPadOS 18.1, macOS Sequoia 15.1, macOS SonoEPSS 0.3%CVE-2025-34191HIGHVasion Print (formerly PrinterLogic) Arbitrary File Write as Root via Response Path Symlink FollowEPSS 0.3%CVE-2024-12753MEDIUMFoxit PDF Reader Link Following Local Privilege Escalation VulnerabilityEPSS 0.3%CVE-2025-43448MEDIUMThis issue was addressed with improved validation of symlinks. This issue is fixed in iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1EPSS 0.3%CVE-2026-29786HIGHnode-tar: Hardlink Path Traversal via Drive-Relative LinkpathEPSS 0.3%CVE-2023-21542HIGHWindows Installer Elevation of Privilege VulnerabilityEPSS 0.3%CVE-2026-11853MEDIUMDebusine is an integrated solution to build, distribute and maintain a Debian-based distribution. Debian source packages (.dsc) and upload aEPSS 0.3%CVE-2025-5474HIGH2BrightSparks SyncBackFree Link Following Local Privilege Escalation VulnerabilityEPSS 0.3%CVE-2026-54056HIGHKitty has an arbitrary file overwrite via symlink following in `kitten dnd` remote drop stagingEPSS 0.3%CVE-2024-27885MEDIUMThis issue was addressed with improved validation of symlinks. This issue is fixed in macOS Monterey 12.7.5, macOS Sonoma 14.5, macOS VenturEPSS 0.3%CVE-2024-7236MEDIUMAVG AntiVirus Free icarus Arbitrary File Creation Denial of Service VulnerabilityEPSS 0.3%CVE-2022-0017HIGHGlobalProtect App: Improper Link Resolution Vulnerability Leads to Local Privilege EscalationEPSS 0.3%CVE-2009-1142MEDIUMAn issue was discovered in open-vm-tools 2009.03.18-154848. Local users can gain privileges via a symlink attack on /tmp files if vmware-useEPSS 0.3%CVE-2021-27241MEDIUMThis vulnerability allows local attackers to delete arbitrary directories on affected installations of Avast Premium Security 20.8.2429 (BuiEPSS 0.3%CVE-2023-1314HIGHLocal Privilege Escalation Vulnerability in cloudflared's InstallerEPSS 0.3%CVE-2024-45316HIGHThe Improper link resolution before file access ('Link Following') vulnerability in SonicWall Connect Tunnel (version 12.4.3.271 and earlierEPSS 0.3%