Lucene search
K

8 matches found

OSV
OSV
added 2026/04/22 6:31 p.m.10 views

GHSA-XF75-659H-CGG5 uutils coreutils has a Link Following Issue

A vulnerability in the tail utility of uutils coreutils allows for the exfiltration of sensitive file contents when using the --follow=name option. Unlike GNU tail, the uutils implementation continues to monitor a path after it has been replaced by a symbolic link, subsequently outputting the...

5.3CVSS5.7AI score0.00096EPSS
Exploits1References3
NVD
NVD
added 2026/04/22 5:16 p.m.4 views

CVE-2026-35345

A vulnerability in the tail utility of uutils coreutils allows for the exfiltration of sensitive file contents when using the --follow=name option. Unlike GNU tail, the uutils implementation continues to monitor a path after it has been replaced by a symbolic link, subsequently outputting the...

5.3CVSS0.00096EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/04/22 4:7 p.m.5 views

CVE-2026-35345

A vulnerability in the tail utility of uutils coreutils allows for the exfiltration of sensitive file contents when using the --follow=name option. Unlike GNU tail, the uutils implementation continues to monitor a path after it has been replaced by a symbolic link, subsequently outputting the...

5.3CVSS5.7AI score0.00096EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/04/22 4:7 p.m.29 views

CVE-2026-35345 uutils coreutils tail Privileged Information Disclosure via Symlink Replacement Race

A vulnerability in the tail utility of uutils coreutils allows for the exfiltration of sensitive file contents when using the --follow=name option. Unlike GNU tail, the uutils implementation continues to monitor a path after it has been replaced by a symbolic link, subsequently outputting the...

5.3CVSS0.00096EPSS
Exploits1References1
CVE
CVE
added 2026/04/22 4:7 p.m.18 views

CVE-2026-35345

CVE-2026-35345 concerns the tail utility in uutils coreutils. The vulnerability arises with the --follow=name option: the implementation continues watching a path after it has been replaced by a symlink and then outputs the contents of the link’s target. In environments where a privileged user mo...

5.3CVSS5.7AI score0.00096EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.3 views

PT-2026-34481

A vulnerability in the tail utility of uutils coreutils allows for the exfiltration of sensitive file contents when using the --follow=name option. Unlike GNU tail, the uutils implementation continues to monitor a path after it has been replaced by a symbolic link, subsequently outputting the...

5.3CVSS5.7AI score0.00096EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.11 views

uutils coreutils 后置链接漏洞

uutils coreutils is a cross-platform core command-line toolset developed by Uutils Open Source. uutils coreutils has a post-installation link vulnerability. This vulnerability arises because the tail utility may disclose sensitive file contents when using the --follow=name option. Unlike GNU tail...

5.3CVSS5.7AI score0.00096EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-35345

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability in the tail utility of uutils coreutils allows for the exfiltration of sensitive file contents when using the --follow=name option. Unlike GNU...

5.3CVSS5.4AI score0.00096EPSS
Exploits1References3
Rows per page
Query Builder