Lucene search
K

592 matches found

NVD
NVD
added yesterday2 views

CVE-2026-50469

Improper link resolution before file access 'link following' in Windows Projected File System allows an authorized attacker to elevate privileges locally...

7.8CVSS
Exploits0References1
NVD
NVD
added yesterday2 views

CVE-2026-49791

Improper link resolution before file access 'link following' in Windows Routing and Remote Access Service RRAS allows an authorized attacker to elevate privileges locally...

7.1CVSS
Exploits0References1
Cvelist
Cvelist
added yesterday14 views

CVE-2026-6851 Improper link resolution before file access in Bitdefender Total Security via Link Following (VA-13681)

An Improper link resolution before file access 'link following' vulnerability in the File Shredder module as used in Bitdefender Total Security and Internet Security on Windows allows a less-privileged local user to elevate rights by leveraging a race conditions via Symbolic Links. This issue...

7CVSS0.00121EPSS
Exploits0References1
EUVD
EUVD
added yesterday5 views

EUVD-2026-43632

An Improper link resolution before file access 'link following' vulnerability in the File Shredder module as used in Bitdefender Total Security and Internet Security on Windows allows a less-privileged local user to elevate rights by leveraging a race conditions via Symbolic Links. This issue...

7CVSS6.1AI score0.00121EPSS
Exploits0References1
NVD
NVD
added 2026/07/07 5:16 p.m.8 views

CVE-2026-14904

AWS Research and Engineering Studio RES is an open-source solution that enables researchers and engineers to create and manage secure virtual desktops and computing resources on AWS. Improper link resolution before file access issue CWE-59 in the Auth.GetUserPrivateKey API. An authenticated remot...

7.1CVSS0.00381EPSS
Exploits0References2
EUVD
EUVD
added 2026/07/07 4:37 p.m.7 views

EUVD-2026-42056

AWS Research and Engineering Studio RES is an open-source solution that enables researchers and engineers to create and manage secure virtual desktops and computing resources on AWS. Improper link resolution before file access issue CWE-59 in the Auth.GetUserPrivateKey API. An authenticated remot...

7.1CVSS6.2AI score0.00381EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/07/07 4:37 p.m.49 views

CVE-2026-14904 RES Auth.GetUserPrivateKey Arbitrary File Read

AWS Research and Engineering Studio RES is an open-source solution that enables researchers and engineers to create and manage secure virtual desktops and computing resources on AWS. Improper link resolution before file access issue CWE-59 in the Auth.GetUserPrivateKey API. An authenticated remot...

7.1CVSS0.00381EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/07/03 8:35 p.m.7 views

CVE-2026-57991

Improper link resolution before file access 'link following' in Microsoft Edge Chromium-based allows an unauthorized attacker to disclose information over a network...

7.4CVSS5.9AI score0.00745EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/07/03 8:35 p.m.10 views

EUVD-2026-41579

Improper link resolution before file access 'link following' in Microsoft Edge Chromium-based allows an unauthorized attacker to disclose information over a network...

7.4CVSS5.9AI score0.00745EPSS
Exploits0References1
NVD
NVD
added 2026/07/03 1:17 p.m.6 views

CVE-2026-46468

Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper link resolution before file access 'Link following' vulnerabilit...

4.4CVSS0.00133EPSS
Exploits0References1
CVE
CVE
added 2026/07/03 12:9 p.m.21 views

CVE-2026-44269

CVE-2026-44269 affects Dell PowerProtect Data Domain (versions 7.7.1.0 through 8.6; LTS2026 8.6.1.0–8.6.1.10; LTS2025 8.3.1.0–8.3.1.30; LTS2024 7.13.1.0–7.13.1.70) and is due to an improper link resolution before file access (link following). A high-privilege attacker with local access could pote...

4.4CVSS5.9AI score0.00133EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/07/03 12:9 p.m.39 views

CVE-2026-44269

Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper link resolution before file access 'link following' vulnerabilit...

4.4CVSS0.00133EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2026/07/02 2:0 p.m.7 views

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

Improper link resolution before file access 'link following' in Microsoft Edge Chromium-based allows an unauthorized attacker to disclose information over a network...

7.4CVSS5.9AI score0.00745EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/07/02 12:0 a.m.10 views

PT-2026-55623

Name of the Vulnerable Software and Affected Versions Microsoft Edge Chromium-based affected versions not specified Description Improper link resolution before file access, also known as link following, allows an unauthorized attacker to disclose information over a network. Recommendations At the...

7.4CVSS5.8AI score0.00745EPSS
Exploits0References7
EUVD
EUVD
added 2026/06/26 6:22 p.m.9 views

EUVD-2026-39832

Incorrect link resolution by display name in the custom PowerShell VPN editor in Devolutions Remote Desktop Manager 2026.2.5 through 2026.2.11 allows an authenticated attacker with write access to a shared workspace to execute a PowerShell script in another user's context via a display name...

7.2CVSS5.8AI score0.00278EPSS
Exploits0References1
OSV
OSV
added 2026/06/23 6:4 a.m.4 views

MGASA-2026-0227 Updated sslh packages fix security vulnerabilities

CVE-2025-46806, A Use of Out-of-range Pointer Offset vulnerability in sslh leads to denial of service on some architectures CVE-2025-46807, A Allocation of Resources Without Limits or Throttling vulnerability in sslh allows attackers to easily exhaust the file descriptors in sslh and deny...

9.3CVSS5.9AI score0.00404EPSS
Exploits0References5
Mageia
Mageia
added 2026/06/23 6:4 a.m.9 views

Updated sslh packages fix security vulnerabilities

CVE-2025-46806, A Use of Out-of-range Pointer Offset vulnerability in sslh leads to denial of service on some architectures CVE-2025-46807, A Allocation of Resources Without Limits or Throttling vulnerability in sslh allows attackers to easily exhaust the file descriptors in sslh and deny...

9.3CVSS5.8AI score0.00404EPSS
Exploits0References4
NVD
NVD
added 2026/06/22 8:16 p.m.11 views

CVE-2026-44274

Dell Wyse Management Suite WMS, versions prior to WMS 2605, contain an Improper Link Resolution Before File Access vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Unauthorized access...

7.8CVSS0.00127EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/22 6:47 p.m.8 views

EUVD-2026-38341

Dell Wyse Management Suite WMS, versions prior to WMS 2605, contain an Improper Link Resolution Before File Access vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Unauthorized access...

7.8CVSS5.9AI score0.00127EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/22 6:47 p.m.4 views

CVE-2026-44274

Dell Wyse Management Suite WMS, versions prior to WMS 2605, contain an Improper Link Resolution Before File Access vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Unauthorized access...

7.8CVSS5.9AI score0.00127EPSS
Exploits0References2
Rows per page
Query Builder