5 matches found
CVE-2026-23563
Improper Link Resolution Before File Access invoked by 1E‑Explorer‑TachyonCore‑DeleteFileByPath instruction in TeamViewer DEX - 1E Client before version 26.1 on Windows allows a low‑privileged local attacker to delete protected system files via a crafted RPC control junction or symlink that is...
CVE-2026-23563
Improper Link Resolution Before File Access invoked by 1E‑Explorer‑TachyonCore‑DeleteFileByPath instruction in TeamViewer DEX - 1E Client before version 26.1 on Windows allows a low‑privileged local attacker to delete protected system files via a crafted RPC control junction or symlink that is...
CVE-2025-3771
A path or symbolic link manipulation vulnerability in SIR 1.0.3 and prior versions allows an authenticated non-admin local user to overwrite system files with SIR backup files, which can potentially cause a system crash. This was achieved by adding a malicious entry to the registry under the...
CVE-2025-3771
CVE-2025-3771 describes a path or symbolic-link manipulation vulnerability in Trellix System Information Reporter (SIR) version 1.0.3 and earlier. An authenticated non-admin local user can overwrite system files by adding a malicious entry to the Trellix SIR registry folder (or via policy) or by ...
PT-2025-26951
Name of the Vulnerable Software and Affected Versions: System Information Reporter versions 1.0.3 and prior Description: The issue allows a local user to manipulate the location of registry backup files by creating a junction symlink, potentially overwriting system files. This can be achieved by...