CWE-59— Improper Link Resolution Before File Access (Link Following)
The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.— MITRE CWE catalog
1,471 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-59page 16 of 30
- CVE-2021-27851MEDIUMCVSS 5.5EG 5.52021-04-26
A security vulnerability that can lead to local privilege escalation has been found in ’guix-daemon’. It affects multi-user setups in which ’guix-daemon’ runs locally. The attack consists in having an unprivileged user spawn a buil…
- CVE-2021-28098HIGHCVSS 7.8EG 7.82021-04-14
An issue was discovered in Forescout CounterACT before 8.1.4. A local privilege escalation vulnerability is present in the logging function. SecureConnector runs with administrative privileges and writes logs entries to a file in %PROGRAMD…
- CVE-2021-28153MEDIUMCVSS 5.3EG 5.32021-03-11
An issue was discovered in GNOME GLib before 2.66.8. When g_file_replace() is used with G_FILE_CREATE_REPLACE_DESTINATION to replace a path that is a dangling symlink, it incorrectly also creates the target of the symlink as an empty file,…
- CVE-2021-28163LOWCVSS 2.7EG 2.72021-04-01
In Eclipse Jetty 9.4.32 to 9.4.38, 10.0.0.beta2 to 10.0.1, and 11.0.0.beta2 to 11.0.1, if a user uses a webapps directory that is a symlink, the contents of the webapps directory is deployed as a static webapp, inadvertently serving the we…
- CVE-2021-28321HIGHCVSS 7.8EG 7.82021-04-13
Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability
- CVE-2021-28650MEDIUMCVSS 5.5EG 5.52021-03-17
autoar-extractor.c in GNOME gnome-autoar before 0.3.1, as used by GNOME Shell, Nautilus, and other software, allows Directory Traversal during extraction because it lacks a check of whether a file's parent is a symlink in certain complex s…
- CVE-2021-30356HIGHCVSS 8.1EG 8.12021-04-22
A denial of service vulnerability was reported in Check Point Identity Agent before R81.018.0000, which could allow low privileged users to overwrite protected system files.
- CVE-2021-30463HIGHCVSS 7.8EG 7.82021-04-08
VestaCP through 0.9.8-24 allows attackers to gain privileges by creating symlinks to files for which they lack permissions. After reading the RKEY value from user.conf under the /usr/local/vesta/data/users/admin directory, the admin passwo…
- CVE-2021-30855MEDIUMCVSS 5.5EG 5.52021-08-24
A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14.8, iOS 15 and iPadOS 15, watchOS 8, mac…
- CVE-2021-30968MEDIUMCVSS 5.5EG 5.52021-08-24
A validation issue related to hard link behavior was addressed with improved sandbox restrictions. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.2, macOS Monterey 12.1, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, wa…
- CVE-2021-31187HIGHCVSS 7.8EG 7.82021-05-11
Windows WalletService Elevation of Privilege Vulnerability
- CVE-2021-31566HIGHCVSS 7.8EG 7.82022-08-23
An improper link resolution flaw can occur while extracting an archive leading to changing modes, times, access control lists, and flags of a file outside of the archive. An attacker may provide a malicious archive to a victim user, who wo…
- CVE-2021-31843HIGHCVSS 7.3EG 7.82021-09-17
Improper privileges management vulnerability in McAfee Endpoint Security (ENS) Windows prior to 10.7.0 September 2021 Update allows local users to access files which they would otherwise not have access to via manipulating junction links t…
- CVE-2021-31997MEDIUMCVSS 6.8EG 7.82021-06-10
A UNIX Symbolic Link (Symlink) Following vulnerability in python-postorius of openSUSE Leap 15.2, Factory allows local attackers to escalate from users postorius or postorius-admin to root. This issue affects: openSUSE Leap 15.2 python-pos…
- CVE-2021-32000LOWCVSS 3.2EG 7.12021-07-28
A UNIX Symbolic Link (Symlink) Following vulnerability in the clone-master-clean-up.sh script of clone-master-clean-up in SUSE Linux Enterprise Server 12 SP3, SUSE Linux Enterprise Server 15 SP1; openSUSE Factory allows local attackers to …
- CVE-2021-32508MEDIUMCVSS 6.5EG 6.52021-07-07
Absolute Path Traversal vulnerability in FileStreaming in QSAN Storage Manager allows remote authenticated attackers access arbitrary files by injecting the Symbolic Link following the Url path parameter. The referred vulnerability has bee…
- CVE-2021-32509MEDIUMCVSS 6.5EG 6.52021-07-07
Absolute Path Traversal vulnerability in FileviewDoc in QSAN Storage Manager allows remote authenticated attackers access arbitrary files by injecting the Symbolic Link following the Url path parameter. The referred vulnerability has been …
- CVE-2021-32518HIGHCVSS 7.5EG 7.52021-07-07
A vulnerability in share_link in QSAN Storage Manager allows remote attackers to create a symbolic link then access arbitrary files. The referred vulnerability has been solved with the updated version of QSAN Storage Manager v3.3.3.
- CVE-2021-32547HIGHCVSS 7.3EG 7.32021-06-12
It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the openjdk-lts package apport hooks, it could expose private data to other local users.
- CVE-2021-32548HIGHCVSS 7.3EG 7.32021-06-12
It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the openjdk-8 package apport hooks, it could expose private data to other local users.
- CVE-2021-32549HIGHCVSS 7.3EG 7.32021-06-12
It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the openjdk-13 package apport hooks, it could expose private data to other local users.
- CVE-2021-32550HIGHCVSS 7.3EG 7.32021-06-12
It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the openjdk-14 package apport hooks, it could expose private data to other local users.
- CVE-2021-32551HIGHCVSS 7.3EG 7.32021-06-12
It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the openjdk-15 package apport hooks, it could expose private data to other local users.
- CVE-2021-32552HIGHCVSS 7.3EG 7.32021-06-12
It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the openjdk-16 package apport hooks, it could expose private data to other local users.
- CVE-2021-32553HIGHCVSS 7.3EG 7.32021-06-12
It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the openjdk-17 package apport hooks, it could expose private data to other local users.
- CVE-2021-32554HIGHCVSS 7.3EG 7.32021-06-12
It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the xorg package apport hooks, it could expose private data to other local users.
- CVE-2021-32555HIGHCVSS 7.3EG 7.32021-06-12
It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the xorg-hwe-18.04 package apport hooks, it could expose private data to other local users.
- CVE-2021-32557MEDIUMCVSS 5.2EG 5.22021-06-12
It was discovered that the process_report() function in data/whoopsie-upload-all allowed arbitrary file writes via symlinks.
- CVE-2021-32610HIGHCVSS 7.1EG 7.12021-07-30
In Archive_Tar before 1.4.14, symlinks can refer to targets outside of the extracted archive, a different vulnerability than CVE-2020-36193.
- CVE-2021-32803HIGHCVSS 8.2EG 8.22021-08-03
The npm package "tar" (aka node-tar) before versions 6.1.2, 5.0.7, 4.4.15, and 3.2.3 has an arbitrary File Creation/Overwrite vulnerability via insufficient symlink protection. `node-tar` aims to guarantee that any file whose location woul…
- CVE-2021-32825LOWCVSS 2.7EG 9.12021-08-16
bblfshd is an open source self-hosted server for source code parsing. In bblfshd before commit 4265465b9b6fb5663c30ee43806126012066aad4 there is a "zipslip" vulnerability. The unsafe handling of symbolic links in an unpacking routine may e…
- CVE-2021-3310HIGHCVSS 7.8EG 7.82021-03-10
Western Digital My Cloud OS 5 devices before 5.10.122 mishandle Symbolic Link Following on SMB and AFP shares. This can lead to code execution and information disclosure (by reading local files).
- CVE-2021-34408HIGHCVSS 7.8EG 7.82021-09-27
The Zoom Client for Meetings for Windows in all versions before version 5.3.2 writes log files to a user writable directory as a privileged user during the installation or update of the client. This could allow for potential privilege esca…
- CVE-2021-35937MEDIUMCVSS 6.4EG 6.42022-08-25
A race condition vulnerability was found in rpm. A local unprivileged user could use this flaw to bypass the checks that were introduced in response to CVE-2017-7500 and CVE-2017-7501, potentially gaining root privileges. The highest threa…
- CVE-2021-35938MEDIUMCVSS 6.7EG 7.82022-08-25
A symbolic link issue was found in rpm. It occurs when rpm sets the desired permissions and credentials after installing a file. A local unprivileged user could use this flaw to exchange the original file with a symbolic link to a security…
- CVE-2021-35939MEDIUMCVSS 6.7EG 7.82022-08-26
It was found that the fix for CVE-2017-7500 and CVE-2017-7501 was incomplete: the check was only implemented for the parent directory of the file to be created. A local unprivileged user who owns another ancestor directory could potentiall…
- CVE-2021-36286HIGHCVSS 7.1EG 7.12021-09-28
Dell SupportAssist Client Consumer versions 3.9.13.0 and any versions prior to 3.9.13.0 contain an arbitrary file deletion vulnerability that can be exploited by using the Windows feature of NTFS called Symbolic links. Symbolic links can b…
- CVE-2021-3641MEDIUMCVSS 6.1EG 6.12021-11-09
Improper Link Resolution Before File Access ('Link Following') vulnerability in the EPAG component of Bitdefender Endpoint Security Tools for Windows allows a local attacker to cause a denial of service. This issue affects: Bitdefender Gra…
- CVE-2021-36744HIGHCVSS 7.8EG 7.82021-09-06
Trend Micro Security (Consumer) 2021 and 2020 are vulnerable to a directory junction vulnerability which could allow an attacker to exploit the system to escalate privileges and create a denial of service.
- CVE-2021-36928MEDIUMCVSS 6.0EG 7.82021-08-26
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
- CVE-2021-36983HIGHCVSS 7.8EG 7.82021-07-30
replay-sorcery-kms in Replay Sorcery 0.6.0 allows a local attacker to gain root privileges via a symlink attack on /tmp/replay-sorcery or /tmp/replay-sorcery/device.sock.
- CVE-2021-37701HIGHCVSS 8.2EG 8.22021-08-31
The npm package "tar" (aka node-tar) before versions 4.4.16, 5.0.8, and 6.1.7 has an arbitrary file creation/overwrite and arbitrary code execution vulnerability. node-tar aims to guarantee that any file whose location would be modified by…
- CVE-2021-37712HIGHCVSS 8.2EG 8.22021-08-31
The npm package "tar" (aka node-tar) before versions 4.4.18, 5.0.10, and 6.1.9 has an arbitrary file creation/overwrite and arbitrary code execution vulnerability. node-tar aims to guarantee that any file whose location would be modified b…
- CVE-2021-37969HIGHCVSS 7.8EG 7.82021-10-08
Inappropriate implementation in Google Updater in Google Chrome on Windows prior to 94.0.4606.54 allowed a remote attacker to perform local privilege escalation via a crafted file.
- CVE-2021-38511HIGHCVSS 7.5EG 7.52021-08-10
An issue was discovered in the tar crate before 0.4.36 for Rust. When symlinks are present in a TAR archive, extraction can create arbitrary directories via .. traversal.
- CVE-2021-38570CRITICALCVSS 9.1EG 9.12021-08-11
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows attackers to delete arbitrary files (during uninstallation) via a symlink.
- CVE-2021-39135HIGHCVSS 8.2EG 8.22021-08-31
`@npmcli/arborist`, the library that calculates dependency trees and manages the node_modules folder hierarchy for the npm command line interface, aims to guarantee that package dependency contracts will be met, and the extraction of packa…
- CVE-2021-3942CRITICALCVSS 9.8EG 9.82022-12-12
Certain HP Print products and Digital Sending products may be vulnerable to potential remote code execution and buffer overflow with use of Link-Local Multicast Name Resolution or LLMNR.
- CVE-2021-41057HIGHCVSS 7.1EG 7.12021-11-14
In WIBU CodeMeter Runtime before 7.30a, creating a crafted CmDongles symbolic link will overwrite the linked file without checking permissions.
- CVE-2021-41072HIGHCVSS 8.1EG 8.12021-09-14
squashfs_opendir in unsquash-2.c in Squashfs-Tools 4.5 allows Directory Traversal, a different vulnerability than CVE-2021-40153. A squashfs filesystem that has been crafted to include a symbolic link and then contents under the same filen…
Map vulnerabilities like CWE-59 to your infrastructure
EchelonGraph correlates every CVE — across CWE-59 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →