Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2025/07/10 5:18 p.m.3 views

CVE-2025-48820

Improper link resolution before file access 'link following' in Windows AppX Deployment Service allows an authorized attacker to elevate privileges locally...

7.8CVSS6.1AI score0.00399EPSS
Exploits0References1
CVE
CVEadded 2025/07/08 4:57 p.m.38 views

CVE-2025-21195

CVE-2025-21195 refers to an elevation-of-privilege flaw in Azure Service Fabric Runtime caused by improper link resolution before file access (link following). The vulnerability enables a locally authenticated attacker to elevate privileges on affected Service Fabric components. Connected sources...

6CVSS6.5AI score0.00323EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologiesadded 2025/06/10 12:0 a.m.5 views

PT-2025-24858 · Microsoft · Windows Installer +1

Name of the Vulnerable Software and Affected Versions: Windows Installer affected versions not specified Description: The issue is related to improper link resolution before file access, also known as 'link following', which allows an authorized attacker to elevate privileges locally. There is no...

7.8CVSS5.8AI score0.00518EPSS
Exploits0References8
CVE
CVEadded 2025/05/13 4:58 p.m.66 views

CVE-2025-29975

CVE-2025-29975 affects Microsoft PC Manager on Windows. It stems from improper link resolution before file access ("link following"), enabling a locally authenticated attacker to elevate privileges. The root cause is a link-following flaw in the PC Manager component, with high impact to confident...

7.8CVSS7AI score0.00444EPSS
Exploits0References1Affected Software1
NVD
NVDadded 2024/11/22 10:15 p.m.9 views

CVE-2024-7237

AVG AntiVirus Free AVGSvc Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of AVG AntiVirus Free. An attacker must first obtain the ability to execute low-privileged code on the target system in ord...

7.8CVSS0.00344EPSS
Exploits0References1
UbuntuCve
UbuntuCveadded 2022/05/10 2:15 p.m.29 views

CVE-2022-1537

file.copy operations in GruntJS are vulnerable to a TOCTOU race condition leading to arbitrary file write in GitHub repository gruntjs/grunt prior to 1.5.3. This vulnerability is capable of arbitrary file writes which can lead to local privilege escalation to the GruntJS user if a lower-privilege...

7.8CVSS7.2AI score0.00296EPSS
Exploits1References4
Veracode
Veracodeadded 2021/09/08 1:10 a.m.5 views

Privilege Escalation

claws-mail is vulnerable to privilege escalation. The vulnerability exists due to the lack of link checks before accepting a click in textviewurisecuritycheck in textview.c...

6.1CVSS6.5AI score0.01339EPSS
Exploits0References9Affected Software1
Hacker One
Hacker Oneadded 2016/03/20 10:3 a.m.48 views

HackerOne: External links should use rel="noopener" or use the redirect service

This is a rather low severity one and a successful exploitation relies on unlikely user interaction as well as the ability to control the HTML output of an remote host. Furthermore it is a kinda new hardening features in some browsers. Though one can work around this using "noreferrer" which is...

7AI score
Exploits0
Rows per page
Query Builder