CWE-1386— Insecure Operation on Windows Junction / Mount Point
The product opens a file or directory, but it does not properly prevent the name from being associated with a junction or mount point to a destination that is outside of the intended control sphere.— MITRE CWE catalog
15 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-1386page 1 of 1
- CVE-2022-42291HIGHCVSS 8.2EG 5.52023-02-07
NVIDIA GeForce Experience contains a vulnerability in the installer, where a user installing the NVIDIA GeForce Experience software may inadvertently delete data from a linked location, which may lead to data tampering. An attacker does n…
- CVE-2023-23697MEDIUMCVSS 4.7EG 3.32023-02-13
Dell Command | Intel vPro Out of Band, versions before 4.4.0, contain an arbitrary folder delete vulnerability during uninstallation. A locally authenticated malicious user may potentially exploit this vulnerability leading to arbitrary fo…
- CVE-2023-23698MEDIUMCVSS 5.5EG 7.12023-02-10
Dell Command | Update, Dell Update, and Alienware Update versions before 4.6.0 and 4.7.1 contain Insecure Operation on Windows Junction in the installer component. A local malicious user may potentially exploit this vulnerability leading …
- CVE-2023-24572MEDIUMCVSS 4.7EG 3.32023-02-13
Dell Command | Integration Suite for System Center, versions before 6.4.0 contain an arbitrary folder delete vulnerability during uninstallation. A locally authenticated malicious user may potentially exploit this vulnerability leading to…
- CVE-2023-28065MEDIUMCVSS 6.7EG 6.72023-06-23
Dell Command | Update, Dell Update, and Alienware Update versions 4.8.0 and prior contain an Insecure Operation on Windows Junction / Mount Point vulnerability. A local malicious user could potentially exploit this vulnerability leading t…
- CVE-2023-28071MEDIUMCVSS 6.3EG 6.32023-06-23
Dell Command | Update, Dell Update, and Alienware Update versions 4.9.0, A01 and prior contain an Insecure Operation on Windows Junction / Mount Point vulnerability. A local malicious user could potentially exploit this vulnerability to c…
- CVE-2023-32454MEDIUMCVSS 6.3EG 6.32024-02-06
DUP framework version 4.9.4.36 and prior contains insecure operation on Windows junction/Mount point vulnerability. A local malicious standard user could exploit the vulnerability to create arbitrary files, leading to denial of service
- CVE-2023-32470MEDIUMCVSS 5.0EG 5.02023-09-08
Dell Digital Delivery versions prior to 5.0.82.0 contain an Insecure Operation on Windows Junction / Mount Point vulnerability. A local malicious user could potentially exploit this vulnerability to create arbitrary folder leading to perm…
- CVE-2023-32474MEDIUMCVSS 6.6EG 6.62024-02-06
Dell Display Manager application, version 2.1.1.17 and prior, contain an insecure operation on windows junction/mount point. A local malicious user could potentially exploit this vulnerability during installation leading to arbitrary fold…
- CVE-2023-40623MEDIUMCVSS 6.2EG 7.12023-09-12
SAP BusinessObjects Suite Installer - version 420, 430, allows an attacker within the network to create a directory under temporary directory and link it to a directory with operating system files. On successful exploitation the attacker …
- CVE-2023-5834HIGHCVSS 7.8EG 3.82023-10-27
HashiCorp Vagrant's Windows installer targeted a custom location with a non-protected path that could be junctioned, introducing potential for unauthorized file system writes. Fixed in Vagrant 2.4.0.
- CVE-2024-36340MEDIUMCVSS 6.6EG 6.62025-05-13
A junction point vulnerability within AMD uProf can allow a local low-privileged attacker to create junction points, potentially resulting in arbitrary file deletion or disclosure.
- CVE-2024-7400HIGHCVSS 8.5EG 8.52024-09-27
The vulnerability potentially allowed an attacker to misuse ESET’s file operations during the removal of a detected file on the Windows operating system to delete files without having proper permissions to do so.
- CVE-2025-58074HIGHCVSS 8.8EG 8.82026-05-04
A privilege escalation vulnerability exists during the installation of Norton Secure VPN via the Microsoft Store. A low-privilege user can replace files during the installation process, which may result in deletion of arbitrary files that …
- CVE-2026-41116MEDIUMCVSS 6.3EG 6.32026-06-09
Dell Inventory Collector Client, versions prior to 13.8.0, contain an Improper Link Resolution Before File Access ('Link Following') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, l…
Map vulnerabilities like CWE-1386 to your infrastructure
EchelonGraph correlates every CVE — across CWE-1386 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →