528 matches found
CVE-2026-21419
Dell Display and Peripheral Manager Windows versions prior to 2.2 contain an Improper Link Resolution Before File Access 'Link Following' vulnerability in the Installer and Service. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of...
CVE-2026-21517
Improper link resolution before file access 'link following' in Windows App for Mac allows an authorized attacker to elevate privileges locally...
Windows App for Mac Installer Elevation of Privilege Vulnerability
Improper link resolution before file access 'link following' in Windows App for Mac allows an authorized attacker to elevate privileges locally...
CVE-2025-62676
An Improper Link Resolution Before File Access 'Link Following' vulnerability CWE-59 vulnerability in Fortinet FortiClientWindows 7.4.0 through 7.4.4, FortiClientWindows 7.2.0 through 7.2.12, FortiClientWindows 7.0 all versions may allow a local low-privilege attacker to perform an arbitrary file...
Fortinet FortiClientWindows 后置链接漏洞
Fortinet FortiClientWindows is a Windows-based mobile device security solution provided by the American company Fortinet. When connected to the FortiGate firewall device, this solution offers features such as IPsec and SSL encryption, wide-area network optimization, terminal compliance, and...
PT-2026-7402
Name of the Vulnerable Software and Affected Versions Windows App for Mac affected versions not specified Description A flaw in how the Windows App for Mac handles link resolution before file access, known as 'link following', could allow a local attacker to gain higher privileges. The issue was...
CVE-2025-15328
Tanium addressed an improper link resolution before file access vulnerability in Enforce...
CVE-2025-15328
Tanium addressed an improper link resolution before file access vulnerability in Enforce...
CVE-2025-15328 Tanium addressed an improper link resolution before file access vulnerability in Enforce.
Tanium addressed an improper link resolution before file access vulnerability in Enforce...
EUVD-2025-206835
Tanium addressed an improper link resolution before file access vulnerability in Enforce...
CVE-2025-15328
Tanium addressed an improper link resolution before file access vulnerability in Enforce...
CVE-2025-15328
CVE-2025-15328 describes an improper link resolution before file access in Tanium Enforce. Documents indicate Tanium addressed the issue, but provide no explicit affected versions, patch version, or detailed root cause beyond the general flaw. The PT-Security entry warns of potential unauthorized...
CVE-2025-15328 Tanium addressed an improper link resolution before file access vulnerability in Enforce.
Tanium addressed an improper link resolution before file access vulnerability in Enforce...
Tanium Enforce 安全漏洞
Tanium Enforce is a terminal policy and configuration management module provided by the American company Tanium. Tanium Enforce has a security vulnerability, which stems from improper link resolution before file access...
PT-2026-6613
Name of the Vulnerable Software and Affected Versions Tanium Enforce affected versions not specified Description Tanium Enforce contains a flaw related to improper link resolution before file access. This could potentially allow unauthorized access to files. Recommendations At the moment, there i...
CVE-2025-15543
Improper link resolution in USB HTTP access path in VX800v v1.0 allows a crafted USB device to expose root filesystem contents, giving an attacker with physical access read‑only access to system files...
CVE-2025-15541
Improper link resolution in the VX800v v1.0 SFTP service allows authenticated adjacent attackers to use crafted symbolic links to access system files, resulting in high confidentiality impact and limited integrity risk...
CVE-2025-15543
Improper link resolution in USB HTTP access path in VX800v v1.0 allows a crafted USB device to expose root filesystem contents, giving an attacker with physical access read‑only access to system files...
CVE-2025-15543
Improper link resolution in USB HTTP access path in VX800v v1.0 allows a crafted USB device to expose root filesystem contents, giving an attacker with physical access read‑only access to system files...
CVE-2025-15541
Improper link resolution in the VX800v v1.0 SFTP service allows authenticated adjacent attackers to use crafted symbolic links to access system files, resulting in high confidentiality impact and limited integrity risk...