JLSEC-2025-236 An improper link resolution flaw can occur while extracting an archive leading to changing modes, ti...

An improper link resolution flaw can occur while extracting an archive leading to changing modes, times, access control lists, and flags of a file outside of the archive. An attacker may provide a malicious archive to a victim user, who would trigger this flaw when trying to extract the archive. ...

Siemens SIMATIC S7-1500 Improper Link Resolution Before File Access (CVE-2021-28153)

An issue was discovered in GNOME GLib before 2.66.8. When gfilereplace is used with GFILECREATEREPLACEDESTINATION to replace a path that is a dangling symlink, it incorrectly also creates the target of the symlink as an empty file, which could conceivably have security relevance if the symlink is...

Generex UPS Adapter CS141 Improper Link Resolution Before File Access (CVE-2022-47188)

There is an arbitrary file reading vulnerability in Generex UPS CS141 below 2.06 version. An attacker, making use of the default credentials, could upload a backup file containing a symlink to /etc/shadow, allowing him to obtain the content of this path. This plugin only works with Tenable.ot...

CVE-2025-59510

Improper link resolution before file access 'link following' in Windows Routing and Remote Access Service RRAS allows an authorized attacker to deny service locally...

CVE-2025-24918

Improper link resolution before file access 'link following' for some IntelR Server Configuration Utility software and IntelR Server Firmware Update Utility software before version 16.0.12. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an...

EUVD-2025-93510

Improper link resolution before file access 'link following' for some IntelR Server Configuration Utility software and IntelR Server Firmware Update Utility software before version 16.0.12. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an...

CVE-2025-60710

Improper link resolution before file access 'link following' in Host Process for Windows Tasks allows an authorized attacker to elevate privileges locally...

CVE-2025-60710

Improper link resolution before file access 'link following' in Host Process for Windows Tasks allows an authorized attacker to elevate privileges locally...

EUVD-2025-93436

Improper link resolution before file access 'link following' in Host Process for Windows Tasks allows an authorized attacker to elevate privileges locally...

EUVD-2025-93447

Improper link resolution before file access 'link following' in Windows Routing and Remote Access Service RRAS allows an authorized attacker to deny service locally...

CVE-2025-24918

Improper link resolution before file access 'link following' for some IntelR Server Configuration Utility software and IntelR Server Firmware Update Utility software before version 16.0.12. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an...

CVE-2025-24918

Improper link resolution before file access 'link following' for some IntelR Server Configuration Utility software and IntelR Server Firmware Update Utility software before version 16.0.12. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an...

Host Process for Windows Tasks Elevation of Privilege Vulnerability

Improper link resolution before file access 'link following' in Host Process for Windows Tasks allows an authorized attacker to elevate privileges locally...

Intel Server Configuration Utility和Intel Server Firmware Update Utility 后置链接漏洞

Intel Server Configuration Utility and Intel Server Firmware Update Utility are both products of Intel Corporation Intel, U.S.A. Intel Server Configuration Utility is a command line utility. Intel Server Firmware Update Utility is a command line utility. A backlink vulnerability exists in Intel...

BIT-DOTNET-2025-55247 .NET Elevation of Privilege Vulnerability

Improper link resolution before file access 'link following' in .NET allows an authorized attacker to elevate privileges locally...

CVE-2025-59241

Improper link resolution before file access 'link following' in Windows Health and Optimized Experiences Service allows an authorized attacker to elevate privileges locally...

EUVD-2025-34277

Improper link resolution before file access 'link following' in Windows Health and Optimized Experiences Service allows an authorized attacker to elevate privileges locally...

CVE-2025-59281

Improper link resolution before file access 'link following' in XBox Gaming Services allows an authorized attacker to elevate privileges locally...

CVE-2025-55247

Improper link resolution before file access 'link following' in .NET allows an authorized attacker to elevate privileges locally...

Windows Health and Optimized Experiences Elevation of Privilege Vulnerability

Improper link resolution before file access 'link following' in Windows Health and Optimized Experiences Service allows an authorized attacker to elevate privileges locally...