Falhas do tipo CWE-59
629 resultadosCVE-2026-27905HIGHBentoML has an Arbitrary File Write via Symlink Path Traversal in Tar ExtractionEPSS 0.3%CVE-2025-24242MEDIUMThis issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia 15.4. An app with root privileges may be aEPSS 0.3%CVE-2025-15541MEDIUMAccess to System Files via SFTP on TP-Link VX800vEPSS 0.3%CVE-2024-9766HIGHWacom Center WTabletServicePro Link Following Local Privilege Escalation VulnerabilityEPSS 0.3%CVE-2025-24278MEDIUMThis issue was addressed with improved validation of symlinks. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS VenturaEPSS 0.3%CVE-2022-45440MEDIUMA vulnerability exists in the FTP server of the Zyxel AX7501-B0 firmware prior to V5.17(ABPC.3)C0, which processes symbolic links on externaEPSS 0.2%CVE-2025-22247MEDIUMInsecure file handling vulnerabilityEPSS 0.2%CVE-2026-44471HIGHgitoxide: Symlink prefix-reuse allows worktree escape during checkoutEPSS 0.2%CVE-2009-1143HIGHAn issue was discovered in open-vm-tools 2009.03.18-154848. Local users can bypass intended access restrictions on mounting shares via a symEPSS 0.2%CVE-2022-22262HIGHASUS Armoury Crate & Aura Creator Installer之ROG Live Service - Improper Link Resolution Before File AccessEPSS 0.2%CVE-2023-31003HIGHIBM Security Access Manager Container privilege escalationEPSS 0.2%CVE-2023-50197HIGHIntel Driver & Support Assistant Link Following Local Privilege Escalation VulnerabilityEPSS 0.2%CVE-2023-47192HIGHAn agent link vulnerability in the Trend Micro Apex One security agent could allow a local attacker to escalate privileges on affected instaEPSS 0.2%CVE-2023-1412HIGHLocal Privilege Escalation Vulnerability in WARP's MSI InstallerEPSS 0.2%CVE-2026-27967HIGHSymlink Escape in Agent File ToolsEPSS 0.2%CVE-2024-29188HIGHMalicious directory junction can cause WiX RemoveFoldersEx to possibly delete elevated filesEPSS 0.2%CVE-2022-0012MEDIUMCortex XDR Agent: Local Arbitrary File Deletion VulnerabilityEPSS 0.2%CVE-2026-40931HIGHComplete Bypass of CVE-2026-24884 Patch via Git-Delivered Symlink Poisoning in compressingEPSS 0.2%CVE-2023-27529HIGHWacom Tablet Driver installer prior to 6.4.2-1 (for macOS) contains an improper link resolution before file access vulnerability. When a useEPSS 0.2%CVE-2026-2627HIGHSoftland FBackup Backup/Restore HID.dll link followingEPSS 0.2%