CWE-59— Improper Link Resolution Before File Access (Link Following)
The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.— MITRE CWE catalog
1,471 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-59page 22 of 30
- CVE-2024-13959HIGHCVSS 7.8EG 7.82025-05-09
Link Following Local Privilege Escalation Vulnerability in TuneupSvc.exe in AVG TuneUp 24.2.16593.9844 on Windows allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic lin…
- CVE-2024-13960HIGHCVSS 7.8EG 7.82025-05-09
Link Following Local Privilege Escalation Vulnerability in TuneUp Service in AVG TuneUp Version 23.4 (build 15592) on Windows 10 allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating…
- CVE-2024-13961HIGHCVSS 7.8EG 7.82025-05-09
Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Avast Cleanup Premium Version 24.2.16593.17810 on Windows 10 Pro x64 allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM …
- CVE-2024-13962HIGHCVSS 7.8EG 7.82025-05-09
Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Gen Digital Inc. Avast Cleanup Premium Version 24.2.16593.17810 on Windows 10 Pro x64 allows local attackers to escalate privileges and execute arbitrary code in the c…
- CVE-2024-1753HIGHCVSS 8.6EG 8.62024-03-18
A flaw was found in Buildah (and subsequently Podman Build) which allows containers to mount arbitrary locations on the host filesystem into build containers. A malicious Containerfile can use a dummy image with a symbolic link to the root…
- CVE-2024-1867HIGHCVSS 7.8EG 7.82024-11-22
G DATA Total Security Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of G DATA Total Security. An attacker must first obtain the ability t…
- CVE-2024-1868HIGHCVSS 7.8EG 7.82024-11-22
G DATA Total Security Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of G DATA Total Security. An attacker must first obtain the ability t…
- CVE-2024-20656HIGHCVSS 7.8EG 7.82024-01-09
Visual Studio Elevation of Privilege Vulnerability
- CVE-2024-21329HIGHCVSS 7.3EG 7.32024-02-13
Azure Connected Machine Agent Elevation of Privilege Vulnerability
- CVE-2024-21397MEDIUMCVSS 5.3EG 5.32024-02-13
Microsoft Azure File Sync Elevation of Privilege Vulnerability
- CVE-2024-21432HIGHCVSS 7.0EG 7.02024-03-12
Windows Update Stack Elevation of Privilege Vulnerability
- CVE-2024-21447HIGHCVSS 7.8EG 7.82024-04-09
Windows Authentication Elevation of Privilege Vulnerability
- CVE-2024-22038HIGHCVSS 7.3EG 7.32024-11-28
Various problems in obs-scm-bridge allows attackers that create specially crafted git repositories to leak information of cause denial of service.
- CVE-2024-23285MEDIUMCVSS 5.5EG 7.82024-03-08
This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sonoma 14.4. An app may be able to create symlinks to protected regions of the disk.
- CVE-2024-23459HIGHCVSS 7.1EG 7.12024-05-02
An Improper Link Resolution Before File Access ('Link Following') vulnerability in Zscaler Client Connector on Mac allows a system file to be overwritten.This issue affects Zscaler Client Connector on Mac : before 3.7.
- CVE-2024-25952MEDIUMCVSS 6.0EG 6.02024-03-28
Dell PowerScale OneFS versions 8.2.2.x through 9.7.0.x contains an UNIX symbolic link (symlink) following vulnerability. A local high privileged attacker could potentially exploit this vulnerability, leading to denial of service, informati…
- CVE-2024-25953MEDIUMCVSS 6.0EG 6.02024-03-28
Dell PowerScale OneFS versions 9.4.0.x through 9.7.0.x contains an UNIX symbolic link (symlink) following vulnerability. A local high privileged attacker could potentially exploit this vulnerability, leading to denial of service, informati…
- CVE-2024-26158HIGHCVSS 7.8EG 7.82024-04-09
Microsoft Install Service Elevation of Privilege Vulnerability
- CVE-2024-26199HIGHCVSS 7.8EG 7.82024-03-12
Microsoft Office Elevation of Privilege Vulnerability
- CVE-2024-26216HIGHCVSS 7.3EG 7.32024-04-09
Windows File Server Resource Management Service Elevation of Privilege Vulnerability
- CVE-2024-26238HIGHCVSS 7.8EG 7.82024-05-14
Microsoft PLUGScheduler Scheduled Task Elevation of Privilege Vulnerability
- CVE-2024-27458HIGHCVSS 8.8EG 8.82024-10-07
A potential security vulnerability has been identified in the HP Hotkey Support software, which might allow local escalation of privilege. HP is releasing mitigation for the potential vulnerability. Customers using HP Programmable Key are …
- CVE-2024-27885MEDIUMCVSS 6.3EG 6.32024-06-10
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Monterey 12.7.5, macOS Sonoma 14.5, macOS Ventura 13.6.7. An app may be able to modify protected parts of the file system.
- CVE-2024-28185CRITICALCVSS 10.0EG 10.02024-04-18
Judge0 is an open-source online code execution system. The application does not account for symlinks placed inside the sandbox directory, which can be leveraged by an attacker to write to arbitrary files and gain code execution outside of …
- CVE-2024-28189CRITICALCVSS 10.0EG 10.02024-04-18
Judge0 is an open-source online code execution system. The application uses the UNIX chown command on an untrusted file within the sandbox. An attacker can abuse this by creating a symbolic link (symlink) to a file outside the sandbox, all…
- CVE-2024-28907HIGHCVSS 7.8EG 7.82024-04-09
Microsoft Brokering File System Elevation of Privilege Vulnerability
- CVE-2024-28916HIGHCVSS 8.8EG 8.82024-03-21
Xbox Gaming Services Elevation of Privilege Vulnerability
- CVE-2024-29007HIGHCVSS 7.3EG 7.32024-04-04
The CloudStack management server and secondary storage VM could be tricked into making requests to restricted or random resources by means of following 301 HTTP redirects presented by external servers when downloading templates or ISOs. Us…
- CVE-2024-29069MEDIUMCVSS 4.8EG 4.82024-07-25
In snapd versions prior to 2.62, snapd failed to properly check the destination of symbolic links when extracting a snap. The snap format is a squashfs file-system image and so can contain symbolic links and other file types. Various file…
- CVE-2024-29188HIGHCVSS 7.9EG 7.92024-03-24
WiX toolset lets developers create installers for Windows Installer, the Windows installation engine. The custom action behind WiX's `RemoveFolderEx` functionality could allow a standard user to delete protected directories. `RemoveFolderE…
- CVE-2024-29989HIGHCVSS 8.4EG 8.42024-04-09
Azure Monitor Agent Elevation of Privilege Vulnerability
- CVE-2024-30018HIGHCVSS 7.8EG 7.82024-05-14
Windows Kernel Elevation of Privilege Vulnerability
- CVE-2024-30033HIGHCVSS 7.0EG 7.02024-05-14
Windows Search Service Elevation of Privilege Vulnerability
- CVE-2024-30060HIGHCVSS 7.8EG 7.82024-05-16
Azure Monitor Agent Elevation of Privilege Vulnerability
- CVE-2024-30065MEDIUMCVSS 5.5EG 5.52024-06-11
Windows Themes Denial of Service Vulnerability
- CVE-2024-30076MEDIUMCVSS 6.8EG 6.82024-06-11
Windows Container Manager Service Elevation of Privilege Vulnerability
- CVE-2024-30093HIGHCVSS 7.3EG 7.32024-06-11
Windows Storage Elevation of Privilege Vulnerability
- CVE-2024-30104HIGHCVSS 7.8EG 7.82024-06-11
Microsoft Office Remote Code Execution Vulnerability
- CVE-2024-3037HIGHCVSS 7.8EG 6.02024-05-14
An arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows servers with Web Print enabled. To exploit this vulnerability, an attacker must first obtain local login access to the Windows Server hosting…
- CVE-2024-30377HIGHCVSS 7.8EG 7.82024-11-22
G DATA Total Security Scan Server Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of G DATA Total Security. An attacker must first obtain t…
- CVE-2024-31952MEDIUMCVSS 6.7EG 6.72024-05-14
An issue was discovered in Samsung Magician 8.0.0 on macOS. Because symlinks are used during the installation process, an attacker can escalate privileges via arbitrary file permission writes. (The attacker must already have user privilege…
- CVE-2024-32002CRITICALCVSS 9.0EG 9.02024-05-14
Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, repositories with submodules can be crafted in a way that exploits a bug in Git whereby it can be fooled into writing files not…
- CVE-2024-35235MEDIUMCVSS 4.4EG 4.42024-06-11
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.8 and earlier, when starting the cupsd server with a Listen configuration item pointing to a symbolic link, the cupsd proc…
- CVE-2024-35253MEDIUMCVSS 4.4EG 4.42024-06-11
Microsoft Azure File Sync Elevation of Privilege Vulnerability
- CVE-2024-35254HIGHCVSS 7.1EG 7.12024-06-11
Azure Monitor Agent Elevation of Privilege Vulnerability
- CVE-2024-35261HIGHCVSS 7.8EG 7.82024-07-09
Azure Network Watcher VM Extension Elevation of Privilege Vulnerability
- CVE-2024-36305HIGHCVSS 7.8EG 7.82024-06-10
A security agent link following vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code o…
- CVE-2024-36306MEDIUMCVSS 6.1EG 6.12024-06-10
A link following vulnerability in the Trend Micro Apex One and Apex One as a Service Damage Cleanup Engine could allow a local attacker to create a denial-of-service condition on affected installations. Please note: an attacker must fir…
- CVE-2024-36486HIGHCVSS 7.8EG 7.82025-06-03
A privilege escalation vulnerability exists in the virtual machine archive restoration functionality of Parallels Desktop for Mac version 20.1.1 (55740). When an archived virtual machine is restored, the prl_vmarchiver tool decompresses th…
- CVE-2024-37143CRITICALCVSS 10.0EG 10.02024-12-10
Dell PowerFlex appliance versions prior to IC 46.381.00 and IC 46.376.00, Dell PowerFlex rack versions prior to RCM 3.8.1.0 (for RCM 3.8.x train) and prior to RCM 3.7.6.0 (for RCM 3.7.x train), Dell PowerFlex custom node using PowerFlex Ma…
Map vulnerabilities like CWE-59 to your infrastructure
EchelonGraph correlates every CVE — across CWE-59 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →