CWE-59— Improper Link Resolution Before File Access (Link Following)
The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.— MITRE CWE catalog
1,471 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-59page 29 of 30
- CVE-2026-42795MEDIUMCVSS 5.1EG 5.12026-06-02
Symlink following vulnerability in Gleam's Hex package export allows files outside the project root to be embedded in the generated package tarball. The file collection helpers (gleam_files, native_files, private_files) in compiler-cli/sr…
- CVE-2026-42834HIGHCVSS 7.8EG 7.82026-05-20
Improper access control in Windows Admin Center allows an authorized attacker to elevate privileges over a network.
- CVE-2026-42989HIGHCVSS 7.8EG 7.82026-06-09
Improper link resolution before file access ('link following') in Winlogon allows an authorized attacker to elevate privileges locally.
- CVE-2026-43619MEDIUMCVSS 6.3EG 6.32026-05-20
Rsync version 3.4.2 and prior contain symlink race condition vulnerabilities in path-based system calls including chmod, lchown, utimes, rename, unlink, mkdir, symlink, mknod, link, rmdir, and lstat that allow local attackers to redirect …
- CVE-2026-43989HIGHCVSS 8.5EG 8.52026-05-12
JunoClaw is an agentic AI platform built on Juno Network. Prior to 0.x.y-security-1, the upload_wasm MCP tool accepted a filesystem path from the agent and uploaded whatever bytes the path resolved to, with no validation of location, symli…
- CVE-2026-43998HIGHCVSS 8.5EG 8.52026-05-13
vm2 is an open source vm/sandbox for Node.js. In 3.10.5, NodeVM's require.root path restriction can be bypassed using filesystem symlinks, allowing sandboxed code to load modules from outside the allowed root directory in host context. Bec…
- CVE-2026-44051HIGHCVSS 8.1EG 8.12026-05-21
An improper link resolution vulnerability in Netatalk 3.0.2 through 4.4.2 allows a remote authenticated attacker to read arbitrary files or overwrite arbitrary files via attacker-controlled symlink creation.
- CVE-2026-44220LOWCVSS 3.2EG 3.22026-05-12
ciguard is a static security auditor for CI/CD pipelines. From 0.8.0 to 0.8.1 , the discover_pipeline_files() function in src/ciguard/discovery.py walks a directory tree following symlinks, with cycle protection via tracking visited resolv…
- CVE-2026-44269MEDIUMCVSS 4.4EG 4.42026-07-03
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper link r…
- CVE-2026-44274HIGHCVSS 7.8EG 7.82026-06-22
Dell Wyse Management Suite (WMS), versions prior to WMS 2605, contain an Improper Link Resolution Before File Access vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Unauth…
- CVE-2026-44275MEDIUMCVSS 6.3EG 6.32026-06-09
Dell/Alienware Purchased Apps, versions prior to 1.1.32.0, contain an Improper Link Resolution Before File Access ('Link Following') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, l…
- CVE-2026-44340HIGHCVSS 7.5EG 7.52026-05-08
PraisonAI is a multi-agent teams system. Prior to version 4.6.37, the _safe_extractall helper that all recipe pull, recipe publish, and recipe unpack flows route through validates each archive member's name for absolute paths, .. segments,…
- CVE-2026-44470HIGHCVSS 7.8EG 7.82026-05-13
The Claude Desktop app gives you Claude Code with a graphical interface built for running multiple sessions side by side. Prior to 1.3834.0, the CoworkVMService component in Claude Desktop for Windows ran as SYSTEM and did not validate whe…
- CVE-2026-44471HIGHCVSS 7.8EG 7.82026-05-13
gitoxide is an implementation of git written in Rust. Prior to 0.21.1, a malicious tree can be constructed that will, when checked out with gitoxide, permit writing an attacker-controlled symlink into any existing directory the user has wr…
- CVE-2026-44711HIGHCVSS 7.9EG 7.92026-05-27
pam_usb provides hardware authentication for Linux using ordinary removable media. Prior to 0.8.7, symlink attacks on pad directory and pad files enable authentication bypass and root file corruption. This vulnerability is fixed in 0.8.7.
- CVE-2026-44881CRITICALCVSS 9.9EG 9.92026-05-28
Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33.8, 2.39.2, and 2.41.0, Portainer su…
- CVE-2026-45384MEDIUMCVSS 6.1EG 6.12026-06-10
bit7z is a cross-platform C++ static library that allows the compression/extraction of archive files. Prior to version 4.0.12, there is an arbitrary file overwrite vulnerability via symlink attack on predictable temp files during archive u…
- CVE-2026-45403LOWCVSS 2.5EG 2.52026-05-28
AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. Prior to 1.13.0, the AnythingLLM agent filesystem copy tool validates only the top-level source and destination pat…
- CVE-2026-45405HIGHCVSS 8.8EG 8.82026-06-26
Dokku is a docker-powered PaaS. Prior to 0.38.2, the git:from-archive and certs:add commands extract user-supplied tar/zip archives into temporary directories without sanitizing member paths or preventing symlink traversal. GNU tar creates…
- CVE-2026-45491MEDIUMCVSS 6.2EG 6.22026-06-09
Improper link resolution before file access ('link following') in .NET allows an unauthorized attacker to perform tampering locally.
- CVE-2026-45539HIGHCVSS 7.4EG 7.42026-05-15
Microsoft APM is an open-source, community-driven dependency manager for AI agents. From 0.5.4 to 0.12.4, two primitive integrators in apm-cli enumerate package files with bare Path.glob() / Path.rglob() calls and read each match with Path…
- CVE-2026-45586HIGHCVSS 7.8EG 7.82026-06-09
Improper link resolution before file access ('link following') in Windows Collaborative Translation Framework allows an authorized attacker to elevate privileges locally.
- CVE-2026-46406MEDIUMCVSS 6.1EG 6.12026-06-25
Claude Code is an agentic coding tool. From 2.1.59 until 2.1.128, the Claude Code /copy command wrote responses to a hardcoded, predictable path (/tmp/claude/response.md) without UID isolation, randomness, or symlink protection. The file …
- CVE-2026-46464MEDIUMCVSS 4.9EG 4.92026-07-03
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper link r…
- CVE-2026-46468MEDIUMCVSS 4.4EG 4.42026-07-03
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper link r…
- CVE-2026-47121MEDIUMCVSS 6.1EG 6.12026-05-29
Sparkle: Binary delta apply intermediate-symlink traversal in malicious .delta ## Summary Binary delta apply intermediate-symlink traversal in malicious .delta `Autoupdate/SUBinaryDeltaApply.m` enforces `relativePath.pathComponents cont…
- CVE-2026-47277MEDIUMCVSS 6.5EG 6.52026-06-17
Runtipi is a personal homeserver orchestrator. In versions 4.9.1 through 4.9.3, Runtipi serves marketplace app logos from files inside cloned app-store repositories through an unauthenticated endpoint, which leads to arbitrary file read th…
- CVE-2026-47833MEDIUMCVSS 6.1EG 6.12026-06-18
setupBpmLogs follows symlink for bpm.log open and chown — container-to-host privilege escalation via /etc/shadow. A compromised process inside a bpm container can cause root to chown an arbitrary host file to vcap and append bpm JSON log…
- CVE-2026-48693MEDIUMCVSS 5.5EG 5.52026-05-26
FastNetMon Community Edition through 1.2.9 is vulnerable to a local symlink attack via predictable file paths in /tmp. The statistics file path defaults to '/tmp/fastnetmon.dat' (src/fastnetmon.cpp line 159). The print_screen_contents_into…
- CVE-2026-48921HIGHCVSS 7.5EG 7.52026-05-27
Jenkins Pipeline: Groovy Libraries Plugin 797.v90ea_a_9b_e45a_0 and earlier does not prohibit symbolic links in shared libraries, allowing attackers able to control the content of a library used by a Pipeline job to read arbitrary files on…
- CVE-2026-49135HIGHCVSS 7.1EG 7.12026-06-01
CodexBar prior to 0.32.0 contains an insecure temporary file handling vulnerability that allows local attackers to access sensitive credentials or tamper with build artifacts by exploiting predictable file paths in the release notarization…
- CVE-2026-50135MEDIUMCVSS 5.5EG 5.52026-06-16
Hugo is a static site generator. From 0.123.0 to 0.161.1, a regression made RootMappingFs.statRoot use Stat (follows symlinks) instead of Lstat , so a direct resources.Get of a symlink pointing outside its mount returned the…
- CVE-2026-50163HIGHCVSS 7.1EG 7.12026-07-01
`oras-go` tar extraction: Hardlink entry with relative Linkname escapes extract dir via process CWD resolution ### Root cause The tar-extraction helper `ensureLinkPath` at [`content/file/utils.go:262-275`](https://github.com/oras-project…
- CVE-2026-50511HIGHCVSS 7.8EG 7.82026-06-09
Improper link resolution before file access ('link following') in Microsoft PC Manager allows an authorized attacker to elevate privileges locally.
- CVE-2026-50549CRITICALCVSS 9.8EG 9.82026-06-25
Cursor is a code editor built for programming with AI. Prior to 3.0, Cursor runs agent terminal commands in a sandbox by default. Before a Write, the agent canonicalizes the target path to confirm it stays inside the workspace, but when ca…
- CVE-2026-5061MEDIUMCVSS 4.7EG 4.72026-05-12
The consul-template library before version 0.42.0 is vulnerable to a sandbox path bypass in the file template helper that may allow reading an out-of-sandbox file. This vulnerability (CVE-2026-5061) is fixed in consul-template 0.42.0.
- CVE-2026-50656HIGHCVSS 7.0EG 7.82026-06-16
Microsoft is aware of an elevation of privilege in the Microsoft Malware Protection Engine in Microsoft Defender publicly referred to as "RoguePlanet ".
- CVE-2026-5161HIGHCVSS 8.8EG 8.82026-04-29
Improper link resolution before file access ('link following') vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus About allows Symlink Attack. This issue affects Pardus About: before 1.2.2.
- CVE-2026-52811CRITICALCVSS 9.0EG 9.02026-06-23
Gogs is an open source self-hosted Git service. Prior to 0.14.3, (*Repository).UploadRepoFiles checks for symlinks only on the leaf of the upload target (osx.IsSymlink(targetPath)). The siblings UpdateRepoFile, DeleteRepoFile, and GetDiffP…
- CVE-2026-53476CRITICALCVSS 9.6EG 9.62026-06-10
A flaw was found in assisted-migration-agent. An unauthenticated attacker, located on the same local area network (LAN), can exploit a path traversal vulnerability. By crafting a specially designed gzipped tarball, the attacker can bypass …
- CVE-2026-53765MEDIUMCVSS 6.1EG 6.12026-06-17
Chrome DevTools for agents (chrome-devtools-mcp) lets your coding agent control and inspect a live Chrome browser. From 0.20.0 until 1.1.0, The chrome-devtools-mcp daemon writes its PID file with fs.writeFileSync() to a deterministic runti…
- CVE-2026-53766MEDIUMCVSS 6.1EG 6.12026-06-24
Chrome DevTools for agents (chrome-devtools-mcp) lets your coding agent control and inspect a live Chrome browser. From 0.24.0 until 1.1.0, McpContext.validatePath() enforces workspace roots by checking whether path.resolve(filePath) textu…
- CVE-2026-54055MEDIUMCVSS 5.0EG 5.02026-06-12
Kitty is a cross-platform GPU based terminal. In versions prior to 0.47.2, a local privilege escalation vulnerability exists in kitty's file transmission protocol where a child process running in the terminal can write to arbitrary files o…
- CVE-2026-54056HIGHCVSS 7.1EG 7.12026-06-12
Kitty is a cross-platform GPU based terminal. In versions 0.47.0 and 0.47.1, `kitten dnd` can allow a malicious remote drag-and-drop source to overwrite or truncate arbitrary files writable by the local kitty user. Remote `text/uri-list` d…
- CVE-2026-54094HIGHCVSS 7.5EG 7.52026-06-12
File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to 2.63.14, it does not stop the HTTP file handlers from following symbolic links before they op…
- CVE-2026-54230HIGHCVSS 7.8EG 7.02026-06-13
A symlink following vulnerability was found in the ABRT post-create event handler scripts in libreport. Event scripts write output files using shell redirections without the O_NOFOLLOW flag. If the target file is replaced with a symlink, t…
- CVE-2026-54352CRITICALCVSS 9.6EG 9.62026-06-22
Budibase is an open-source low-code platform. Prior to 3.39.9, `POST /api/pwa/process-zip` at packages/server/src/api/routes/static.ts:24 accepts a builder-uploaded .zip, extracts it with [email protected] into a temp directory, then for e…
- CVE-2026-54369HIGHCVSS 7.1EG 7.12026-06-29
acl before version 2.4.0 contains a symlink traversal vulnerability in the libacl pathname-based functions acl_get_file(), acl_set_file(), acl_extended_file(), and acl_delete_def_file() that allows local attackers to escalate privileges by…
- CVE-2026-54371HIGHCVSS 7.1EG 7.12026-06-29
attr before version 2.6.0 contains a symlink traversal vulnerability in the getfattr and setfattr utilities that allows local attackers to escalate privileges by replacing a pathname component with a symbolic link during directory hierarch…
- CVE-2026-55443MEDIUMCVSS 5.5EG 5.52026-06-22
LangChain is a framework for building agents and LLM-powered applications. Prior to 1.3.9, several LangChain components that resolve filesystem paths or expand search patterns do not consistently confine the resolved path to the intended r…
Map vulnerabilities like CWE-59 to your infrastructure
EchelonGraph correlates every CVE — across CWE-59 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →