CVE-2025-49154

An insecure access control vulnerability in Trend Micro Apex One and Trend Micro Worry-Free Business Security could allow a local attacker to overwrite key memory-mapped files which could then have severe consequences for the security and stability of affected installations. Please note: an...

SUSE CVE-2025-32802

Kea configuration and API directives can be used to overwrite arbitrary files, subject to permissions granted to Kea. Many common configurations run Kea as root, leave the API entry points unsecured by default, and/or place the control sockets in insecure paths. This issue affects Kea versions...

CVE-2024-40827

The issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8. An app may be able to overwrite arbitrary files...

CVE-2024-1142

Path Traversal in Sonatype IQ Server from version 143 allows remote authenticated attackers to overwrite or delete files via a specially crafted request. Version 171 fixes this issue...

CVE-2021-45442

A link following denial-of-service vulnerability in Trend Micro Worry-Free Business Security on prem only could allow a local attacker to overwrite arbitrary files in the context of SYSTEM. This is similar to, but not the same as CVE-2021-44024. Please note: an attacker must first obtain the...

CVE-2021-41323

Directory traversal in the Compress feature in Pydio Cells 2.2.9 allows remote authenticated users to overwrite personal files, or Cells files belonging to any user, via the format parameter...

CVE-2019-0214

In Apache Archiva 2.0.0 - 2.2.3, it is possible to write files to the archiva server at arbitrary locations by using the artifact upload mechanism. Existing files can be overwritten, if the archiva run user has appropriate permission on the filesystem for the target file...

CVE-2008-4988

pscal in xcal 4.1 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/pscal temporary file...

CVE-2008-4946

convirt 0.8.2 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/setoutput temporary file, related to the 1 template/provision.sh, 2 LinuxCDInstall/provision.sh, 3 FedoraPVInstall/provision.sh, 4 CentOSPVInstall/provision.sh, 5 common/provision.sh, 6...

CVE-2005-2311

SMS 1.9.2m and earlier allows local users to overwrite arbitrary files via a symlink attack on the 1 request1 or 2 request2 temporary files...

CVE-2008-4953

firehol in firehol 1.256 allows local users to overwrite arbitrary files via a symlink attack on 1 /tmp/.firehol-tmp--- and 2 /tmp/firehol.conf temporary files. NOTE: the vendor disputes this vulnerability, stating that an attack "would require an attacker to create 1073741824PID-RANGE symlinks...

CVE-2008-4943

bulmages-servers 0.11.1 allows local users to overwrite arbitrary files via a symlink attack on the a /tmp/error.txt, b /tmp/errores.txt, and possibly other temporary files, related to the 1 creabulmafact, 2 creabulmacont, and possibly 3 actualizabulmacont, 4 installbulmages-db, and 5...

CVE-2003-0606

sup 1.8 and earlier does not properly create temporary files, which allows local users to overwrite arbitrary files...

CVE-2003-0214

run-mailcap in mime-support 3.22 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files...

CVE-2002-2382

cvsupd.sh in CVSup 1.2 allows local users to overwrite arbitrary files and gain privileges via a symlink attack on /var/tmp/cvsupd.out...

CVE-2007-0336

Undercover.app/Contents/Resources/uc in Rixstep Undercover allows local users to overwrite arbitrary files, probably related to a race condition...

CVE-1999-0191

IIS newdsn.exe CGI script allows remote users to overwrite files...

CVE-1999-0096

Sendmail decode alias can be used to overwrite sensitive files...

PT-2025-20276 · Cisco · Cisco Catalyst Sd-Wan Manager

Name of the Vulnerable Software and Affected Versions: Cisco Catalyst SD-WAN Manager affected versions not specified Description: A vulnerability in the CLI of Cisco Catalyst SD-WAN Manager could allow an authenticated, local attacker to overwrite arbitrary files on the local file system of an...

SUSE CVE-2024-0406

A flaw was discovered in the mholt/archiver package. This flaw allows an attacker to create a specially crafted tar file, which, when unpacked, may allow access to restricted files or directories. This issue can allow the creation or overwriting of files with the user's or application's privilege...