7843 matches found
CVE-2026-50163
The CVE concerns the oras-go library (OCI artifacts) prior to version 2.6.2, where ensureLinkPath in content/file/utils.go can return an unresolved hardlink target. During tar extraction, a hardlink entry with a relative Linkname could be resolved against the process CWD, allowing a path like pay...
CVE-2026-50163 oras-go: Hardlink entry with relative Linkname escapes extract dir via process CWD resolution in `oras-go` tar extraction
oras-go is a Go library for managing OCI artifacts. Prior to 2.6.2, ensureLinkPath in content/file/utils.go:262-275 validates a hardlink target relative to the extract base but returns the unresolved target, causing os.Link"victim.secret", "/payload.tar.gz/evilcwdlink" to resolve header.Linkname...
CVE-2026-50526
A flaw was found in .NET. This vulnerability, stemming from improper link resolution before file access, allows an authorized local attacker to perform tampering. This could lead to unauthorized modification of data or system files...
CVE-2026-44023 Docling Core has unsafe remote filename resolution
Docling Core defines core data types and transformations for the document processing application Docling. In versions 1.5.0 and above, prior to 2.74.1, docling-core did not sufficiently restrict remote request destinations and could resolve a server-provided Content-Disposition to a local path in...
CVE-2026-44023
Docling Core (docling-core) versions >= 1.5.0 and = 2.74.1 is recommended. If upgrading isn’t immediately possible, a workaround is to avoid passing untrusted URLs into remote fetch functionality. There is no exploitation detail in the provided documents, and no in‑the‑wild exploit information...
CVE-2026-50526
Improper link resolution before file access 'link following' in .NET allows an authorized attacker to perform tampering locally...
EUVD-2026-44394
Improper link resolution before file access 'link following' in .NET allows an authorized attacker to perform tampering locally...
CVE-2026-50469
Improper link resolution before file access 'link following' in Windows Projected File System allows an authorized attacker to elevate privileges locally...
CVE-2026-58636
Improper link resolution before file access 'link following' in Window PC Manager allows an authorized attacker to elevate privileges locally...
CVE-2026-49791
Improper link resolution before file access 'link following' in Windows Routing and Remote Access Service RRAS allows an authorized attacker to elevate privileges locally...
CVE-2026-49791
CVE-2026-49791 affects Windows Routing and Remote Access Service (RRAS). The issue is an improper link resolution before file access (link following) that can allow an authorized, local attacker to elevate privileges. The vulnerability is triggered locally with low attack complexity and low privi...
Microsoft PC Manager Elevation of Privilege Vulnerability
Improper link resolution before file access 'link following' in Window PC Manager allows an authorized attacker to elevate privileges locally...
Microsoft PC Manager Elevation of Privilege Vulnerability
Improper link resolution before file access 'link following' in Microsoft PC Manager allows an authorized attacker to elevate privileges locally...
Windows Backup Service Elevation of Privilege Vulnerability
Improper link resolution before file access 'link following' in Windows Server Backup allows an authorized attacker to elevate privileges locally...
.NET Tampering Vulnerability
Improper link resolution before file access 'link following' in .NET allows an authorized attacker to perform tampering locally...
Windows Routing and Remote Access Service (RRAS) Elevation of Privilege Vulnerability
Improper link resolution before file access 'link following' in Windows Routing and Remote Access Service RRAS allows an authorized attacker to elevate privileges locally...
Windows Projected File System Elevation of Privilege Vulnerability
Improper link resolution before file access 'link following' in Windows Projected File System allows an authorized attacker to elevate privileges locally...
CVE-2026-8384
In Eclipse Jetty, an HTTP URI of this form: /public;/../admin/secret.txt results in an unresolved path of: /public/../admin/secret.txt instead of the expected: /admin/secret.txt Jetty itself is not affected, as it will not serve the secret.txt file because it will not pass the alias checker only...
CVE-2026-6851 Improper link resolution before file access in Bitdefender Total Security via Link Following (VA-13681)
An Improper link resolution before file access 'link following' vulnerability in the File Shredder module as used in Bitdefender Total Security and Internet Security on Windows allows a less-privileged local user to elevate rights by leveraging a race conditions via Symbolic Links. This issue...
EUVD-2026-43632
An Improper link resolution before file access 'link following' vulnerability in the File Shredder module as used in Bitdefender Total Security and Internet Security on Windows allows a less-privileged local user to elevate rights by leveraging a race conditions via Symbolic Links. This issue...