Lucene search
K

598 matches found

NVD
NVD
added yesterday3 views

CVE-2026-50469

Improper link resolution before file access 'link following' in Windows Projected File System allows an authorized attacker to elevate privileges locally...

7.8CVSS
Exploits0References1
NVD
NVD
added yesterday3 views

CVE-2026-49791

Improper link resolution before file access 'link following' in Windows Routing and Remote Access Service RRAS allows an authorized attacker to elevate privileges locally...

7.1CVSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added yesterday5 views

Windows Projected File System Elevation of Privilege Vulnerability

Improper link resolution before file access 'link following' in Windows Projected File System allows an authorized attacker to elevate privileges locally...

7.8CVSS6.1AI score
Exploits0
Microsoft CVE
Microsoft CVE
added yesterday4 views

Windows Routing and Remote Access Service (RRAS) Elevation of Privilege Vulnerability

Improper link resolution before file access 'link following' in Windows Routing and Remote Access Service RRAS allows an authorized attacker to elevate privileges locally...

7.1CVSS6.1AI score
Exploits0
Microsoft CVE
Microsoft CVE
added yesterday5 views

.NET Tampering Vulnerability

Improper link resolution before file access 'link following' in .NET allows an authorized attacker to perform tampering locally...

7CVSS6.1AI score
Exploits0
Microsoft CVE
Microsoft CVE
added yesterday3 views

Microsoft PC Manager Elevation of Privilege Vulnerability

Improper link resolution before file access 'link following' in Microsoft PC Manager allows an authorized attacker to elevate privileges locally...

8.8CVSS6.1AI score
Exploits0
EUVD
EUVD
added yesterday5 views

EUVD-2026-43632

An Improper link resolution before file access 'link following' vulnerability in the File Shredder module as used in Bitdefender Total Security and Internet Security on Windows allows a less-privileged local user to elevate rights by leveraging a race conditions via Symbolic Links. This issue...

7CVSS6.1AI score0.00121EPSS
Exploits0References1
Cvelist
Cvelist
added yesterday23 views

CVE-2026-6851 Improper link resolution before file access in Bitdefender Total Security via Link Following (VA-13681)

An Improper link resolution before file access 'link following' vulnerability in the File Shredder module as used in Bitdefender Total Security and Internet Security on Windows allows a less-privileged local user to elevate rights by leveraging a race conditions via Symbolic Links. This issue...

7CVSS0.00121EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added yesterday4 views

PT-2026-58203

Name of the Vulnerable Software and Affected Versions Windows Server Backup affected versions not specified Description An improper link resolution issue before file access, known as link following, allows an authorized attacker to elevate privileges locally. This flaw enables a low-privilege...

7.3CVSS6AI score
Exploits0References3
Positive Technologies
Positive Technologies
added yesterday5 views

PT-2026-58417

Name of the Vulnerable Software and Affected Versions Microsoft PC Manager versions prior to 3.22.1.0 Description Improper link resolution before file access, also known as link following, allows an authorized attacker to elevate privileges locally. Recommendations Update to version 3.22.1.0 via...

8.8CVSS6AI score
Exploits0References3
NVD
NVD
added 2026/07/07 5:16 p.m.9 views

CVE-2026-14904

AWS Research and Engineering Studio RES is an open-source solution that enables researchers and engineers to create and manage secure virtual desktops and computing resources on AWS. Improper link resolution before file access issue CWE-59 in the Auth.GetUserPrivateKey API. An authenticated remot...

7.1CVSS0.00381EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/07/07 4:37 p.m.51 views

CVE-2026-14904 RES Auth.GetUserPrivateKey Arbitrary File Read

AWS Research and Engineering Studio RES is an open-source solution that enables researchers and engineers to create and manage secure virtual desktops and computing resources on AWS. Improper link resolution before file access issue CWE-59 in the Auth.GetUserPrivateKey API. An authenticated remot...

7.1CVSS0.00381EPSS
Exploits0References2
EUVD
EUVD
added 2026/07/07 4:37 p.m.7 views

EUVD-2026-42056

AWS Research and Engineering Studio RES is an open-source solution that enables researchers and engineers to create and manage secure virtual desktops and computing resources on AWS. Improper link resolution before file access issue CWE-59 in the Auth.GetUserPrivateKey API. An authenticated remot...

7.1CVSS6.2AI score0.00381EPSS
Exploits0References2
EUVD
EUVD
added 2026/07/03 8:35 p.m.10 views

EUVD-2026-41579

Improper link resolution before file access 'link following' in Microsoft Edge Chromium-based allows an unauthorized attacker to disclose information over a network...

7.4CVSS5.9AI score0.00745EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/07/03 8:35 p.m.7 views

CVE-2026-57991

Improper link resolution before file access 'link following' in Microsoft Edge Chromium-based allows an unauthorized attacker to disclose information over a network...

7.4CVSS5.9AI score0.00745EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2026/07/03 1:17 p.m.6 views

CVE-2026-46468

Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper link resolution before file access 'Link following' vulnerabilit...

4.4CVSS0.00133EPSS
Exploits0References1
CVE
CVE
added 2026/07/03 12:9 p.m.22 views

CVE-2026-44269

CVE-2026-44269 affects Dell PowerProtect Data Domain (versions 7.7.1.0 through 8.6; LTS2026 8.6.1.0–8.6.1.10; LTS2025 8.3.1.0–8.3.1.30; LTS2024 7.13.1.0–7.13.1.70) and is due to an improper link resolution before file access (link following). A high-privilege attacker with local access could pote...

4.4CVSS5.9AI score0.00133EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/07/03 12:9 p.m.41 views

CVE-2026-44269

Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper link resolution before file access 'link following' vulnerabilit...

4.4CVSS0.00133EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2026/07/02 2:0 p.m.8 views

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

Improper link resolution before file access 'link following' in Microsoft Edge Chromium-based allows an unauthorized attacker to disclose information over a network...

7.4CVSS5.9AI score0.00745EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/07/02 12:0 a.m.10 views

PT-2026-55623

Name of the Vulnerable Software and Affected Versions Microsoft Edge Chromium-based affected versions not specified Description Improper link resolution before file access, also known as link following, allows an unauthorized attacker to disclose information over a network. Recommendations At the...

7.4CVSS5.8AI score0.00745EPSS
Exploits0References7
Rows per page
Query Builder