EUVD-2020-4049

Malware in sbrugna...

EUVD-2025-27856

Malicious code in bioql PyPI...

CVE-2020-11707

An issue was discovered in ProVide formerly zFTPServer through 13.1. It doesn't enforce permission over Windows Symlinks or Junctions. As a result, a low-privileged user non-admin can craft a Junction Link in a directory he has full control of, breaking out of the sandbox...

CVE-2021-31843

Improper privileges management vulnerability in McAfee Endpoint Security ENS Windows prior to 10.7.0 September 2021 Update allows local users to access files which they would otherwise not have access to via manipulating junction links to redirect McAfee folder operations to an unintended locatio...

CVE-2021-31843

Improper privileges management vulnerability in McAfee Endpoint Security ENS Windows prior to 10.7.0 September 2021 Update allows local users to access files which they would otherwise not have access to via manipulating junction links to redirect McAfee folder operations to an unintended locatio...

Input validation

Improper privileges management vulnerability in McAfee Endpoint Security ENS Windows prior to 10.7.0 September 2021 Update allows local users to access files which they would otherwise not have access to via manipulating junction links to redirect McAfee folder operations to an unintended locatio...

CVE-2021-31843 Improper access control vulnerability in McAfee ENS for Windows

Improper privileges management vulnerability in McAfee Endpoint Security ENS Windows prior to 10.7.0 September 2021 Update allows local users to access files which they would otherwise not have access to via manipulating junction links to redirect McAfee folder operations to an unintended locatio...

PT-2021-19545 · Mcafee · Mcafee Endpoint Security

Name of the Vulnerable Software and Affected Versions: McAfee Endpoint Security ENS Windows versions prior to 10.7.0 September 2021 Update Description: The issue allows local users to access files they would otherwise not have access to by manipulating junction links to redirect McAfee folder...

CVE-2021-23873

Privilege Escalation vulnerability in McAfee Total Protection MTP prior to 16.0.30 allows a local user to gain elevated privileges and perform arbitrary file deletion as the SYSTEM user potentially causing Denial of Service via manipulating Junction link, after enumerating certain files, at a...

CVE-2020-11707

An issue was discovered in ProVide formerly zFTPServer through 13.1. It doesn't enforce permission over Windows Symlinks or Junctions. As a result, a low-privileged user non-admin can craft a Junction Link in a directory he has full control of, breaking out of the sandbox...

UPM usage with Windows junction, hard and directory symbolic links

The user reports that some of his documents and files are not syncronised. After checking the missing folders or files types, it is found that they are of type symbolic there are three type of symbolic links: hard links, junction links and directory links. More information:...