78 matches found
EUVD-2015-7623
Malware in sbrugna...
EUVD-2015-5698
Malware in sbrugna...
EUVD-2020-30679
Malware in sbrugna...
EUVD-2022-51377
Malicious code in bioql PyPI...
EUVD-2022-2806
Malicious code in bioql PyPI...
Exploit for Incorrect Permission Assignment for Critical Resource in Facebook Below
Below - Local Privilege Escalation CVE-2025-27591 B...
Fortinet Warns Attackers Retain FortiGate Access Post-Patching via SSL-VPN Symlink Exploit
Fortinet has revealed that threat actors have found a way to maintain read-only access to vulnerable FortiGate devices even after the initial access vector used to breach the devices was patched. The attackers are believed to have leveraged known and now-patched security flaws, including, but not...
CVE-2025-3047 Path Traversal in AWS SAM CLI allows file copy to build container
When running the AWS Serverless Application Model Command Line Interface SAM CLI build process with Docker and symlinks are included in the build files, the container environment allows a user to access privileged files on the host by leveraging the elevated permissions granted to the tool. A use...
CVE-2020-3432 Cisco AnyConnect Secure Mobility Client for Mac OS File Corruption Vulnerability
A vulnerability in the uninstaller component of Cisco AnyConnect Secure Mobility Client for Mac OS could allow an authenticated, local attacker to corrupt the content of any file in the filesystem. The vulnerability is due to the incorrect handling of directory paths. An attacker could exploit th...
GHSA-R7J8-5H9C-F6FX Remote Command Execution in file editing in gogs
Impact The malicious user is able to commit and edit a crafted symlink file to a repository to gain SSH access to the server. Patches Editing symlink while changing the file name has been prohibited via the repository web editor https://github.com/gogs/gogs/pull/7857. Users should upgrade to 0.13...
CVE-2024-44131
creationtimestamp| type| source ---|---|--- 2024-12-12 11:35:00+00:00| seen| https://thehackernews.com/2024/12/researchers-uncover-symlink-exploit.html 2024-12-12 13:40:46+00:00| seen| https://t.me/thehackernews/6033 2024-12-12 14:54:31+00:00| seen|...
OESA-2024-1532 fdupes security update
FDUPES is a program for identifying duplicate files residing within specified directories. Security Fixes: In deletefiles in FDUPES before 2.2.0, a TOCTOU race condition allows arbitrary file deletion via a symlink.CVE-2022-48682...
SUSE CVE-2023-5115
An absolute path traversal attack exists in the Ansible automation platform. This flaw allows an attacker to craft a malicious Ansible role and make the victim execute the role. A symlink can be used to overwrite a file outside of the extraction path...
DEBIAN-CVE-2023-4759
Arbitrary File Overwrite in Eclipse JGit = 6.6.0 In Eclipse JGit, all versions = 6.6.0.202305301015-r, a symbolic link present in a specially crafted git repository can be used to write a file to locations outside the working tree when this repository is cloned with JGit to a case-insensitive...
SUSE CVE-2011-5325
Directory traversal vulnerability in the BusyBox implementation of tar before 1.22.0 v5 allows remote attackers to point to files outside the current working directory via a symlink...
SUSE CVE-2020-10737
A race condition was found in the mkhomedir tool shipped with the oddjob package in versions before 0.34.5 and 0.34.6 wherein, during the home creation, mkhomedir copies the /etc/skel directory into the newly created home and changes its ownership to the home's user without properly checking the...
CVE-2022-3592
A symlink following vulnerability was found in Samba, where a user can create a symbolic link that will make 'smbd' escape the configured share path. This flaw allows a remote user with access to the exported part of the file system under a share via SMB1 unix extensions or NFS to create symlinks...
CVE-2022-3421 Privilege escalation in Google Drive for Desktop on MacOS
An attacker can pre-create the /Applications/Google\ Drive.app/Contents/MacOS directory which is expected to be owned by root to be owned by a non-root user. When the Drive for Desktop installer is run for the first time, it will place a binary in that directory with execute permissions and set i...
CVE-2022-31466 TOCTOU Vulnerability in Quick Heal Total Security
Time of Check - Time of Use TOCTOU vulnerability in Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, potentially leading to deletion of system files. This is achieved through exploiting the time between detecting a file as malicious and when th...
ALPINE-CVE-2018-21269
checkpath in OpenRC through 0.42.1 might allow local users to take ownership of arbitrary files because a non-terminal path component can be a symlink...