CWE-59— Improper Link Resolution Before File Access (Link Following)
The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.— MITRE CWE catalog
1,471 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-59page 8 of 30
- CVE-2011-5271MEDIUMCVSS 5.5EG 5.52019-11-12
Pacemaker before 1.1.6 configure script creates temporary files insecurely
- CVE-2012-0054NONECVSS 0.0EG 0.02012-03-19
libs/updater.py in GoLismero 0.6.3, and other versions before Git revision 2b3bb43d6867, as used in backtrack and possibly other products, allows local users to overwrite arbitrary files via a symlink attack on GoLismero-controlled files, …
- CVE-2012-0786NONECVSS 0.0EG 0.02013-11-23
The transform_save function in transform.c in Augeas before 1.0.0 allows local users to overwrite arbitrary files and obtain sensitive information via a symlink attack on a .augnew file.
- CVE-2012-0808NONECVSS 0.0EG 0.02012-03-19
as31 2.3.1-4 does not seed the random number generator and generates predictable temporary file names, which makes it easier for local users to create or truncate files via a symlink attack.
- CVE-2012-0871NONECVSS 0.0EG 0.02014-04-18
The session_link_x11_socket function in login/logind-session.c in systemd-logind in systemd, possibly 37 and earlier, allows local users to create or overwrite arbitrary files via a symlink attack on the X11 user directory in /run/user/.
- CVE-2012-1088NONECVSS 0.0EG 0.02014-02-15
iproute2 before 3.3.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file used by (1) configure or (2) examples/dhcp-client-script.
- CVE-2012-1093HIGHCVSS 7.8EG 7.82020-02-21
The init script in the Debian x11-common package before 1:7.6+12 is vulnerable to a symlink attack that can lead to a privilege escalation during package installation.
- CVE-2012-2093NONECVSS 0.0EG 0.02012-05-18
src/common/latex.py in Gajim 0.15 allows local users to overwrite arbitrary files via a symlink attack on a temporary latex file, related to the get_tmpfile_name function.
- CVE-2012-2103NONECVSS 0.0EG 0.02012-08-26
The qmailscan plugin for Munin 1.4.5 allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names.
- CVE-2012-2945HIGHCVSS 7.5EG 7.52019-10-29
Hadoop 1.0.3 contains a symlink vulnerability.
- CVE-2012-3329NONECVSS 0.0EG 0.02012-12-19
IBM Advanced Settings Utility (ASU) through 3.62 and 3.70 through 9.21 and Bootable Media Creator (BoMC) through 2.30 and 3.00 through 9.21 on Linux allow local users to overwrite arbitrary files via a symlink attack on a (1) temporary fil…
- CVE-2012-3345NONECVSS 0.0EG 0.02012-06-15
ioquake3 before r2253 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/ioq3.pid temporary file.
- CVE-2012-3440NONECVSS 0.0EG 0.02012-08-08
A certain Red Hat script for sudo 1.7.2 on Red Hat Enterprise Linux (RHEL) 5 allows local users to overwrite arbitrary files via a symlink attack on the /var/tmp/nsswitch.conf.bak temporary file.
- CVE-2012-4455NONECVSS 0.0EG 0.02012-10-10
openCryptoki 2.4.1 allows local users to create or set world-writable permissions on arbitrary files via a symlink attack on the (1) LCK..opencryptoki or (2) LCK..opencryptoki_stdll file in /var/lock/.
- CVE-2012-4676NONECVSS 0.0EG 0.02012-08-26
The errorExitIfAttackViaString function in Tunnelblick 3.3beta20 and earlier allows local users to delete arbitrary files by constructing a (1) symlink or (2) hard link, a different vulnerability than CVE-2012-3485.
- CVE-2012-5303NONECVSS 0.0EG 0.02012-10-05
Monkey HTTP Daemon 0.9.3 might allow local users to overwrite arbitrary files via a symlink attack on a PID file, as demonstrated by a pathname different from the default /var/run/monkey.pid pathname.
- CVE-2012-5355NONECVSS 0.0EG 0.02012-10-10
welcome.py in xdiagnose before 2.5.2ubuntu0.1 allows local users to overwrite arbitrary files via a symlink attack on a temporary file with a predictable name in /tmp.
- CVE-2012-5564NONECVSS 0.0EG 0.02013-02-14
android-tools 4.1.1 in Android Debug Bridge (ADB) allows local users to overwrite arbitrary files via a symlink attack on /tmp/adb.log.
- CVE-2012-6114MEDIUMCVSS 5.5EG 5.52020-01-28
The git-changelog utility in git-extras 1.7.0 allows local users to overwrite arbitrary files via a symlink attack on (1) /tmp/changelog or (2) /tmp/.git-effort.
- CVE-2012-6348NONECVSS 0.0EG 0.02013-01-04
Centrify Deployment Manager 2.1.0.283, as distributed in Centrify Suite before 2012.5, allows local users to (1) overwrite arbitrary files via a symlink attack on the adcheckDMoutput temporary file, or (2) overwrite arbitrary files and con…
- CVE-2013-0159HIGHCVSS 7.1EG 7.12018-05-01
The fedora-business-cards package before 1-0.1.beta1.fc17 on Fedora 17 and before 1-0.1.beta1.fc18 on Fedora 18 allows local users to cause a denial of service or write to arbitrary files via a symlink attack on /tmp/fedora-business-cards-…
- CVE-2013-0200NONECVSS 0.0EG 0.02013-03-06
HP Linux Imaging and Printing (HPLIP) through 3.12.4 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/hpcupsfilterc_#.bmp, (2) /tmp/hpcupsfilterk_#.bmp, (3) /tmp/hpcups_job#.out, (4) /tmp/hpijs_#####.out…
- CVE-2013-0261HIGHCVSS 8.8EG 8.82013-03-08
A flaw was found in PackStack. A local user could exploit a symlink attack on a temporary file with a predictable name in the `/tmp` directory. This vulnerability allows the local user to overwrite arbitrary files on the system, potentiall…
- CVE-2013-0350NONECVSS 0.0EG 0.02014-05-05
tmp_smtp.c in pktstat 1.8.5 allows local users to overwrite arbitrary files via a symlink attack on /tmp/smtp.log.
- CVE-2013-0927NONECVSS 0.0EG 0.02013-04-10
Google Chrome OS before 26.0.1410.57 relies on a Pango pango-utils.c read_config implementation that loads the contents of the .pangorc file in the user's home directory, and the file referenced by the PANGO_RC_FILE environment variable, w…
- CVE-2013-1423NONECVSS 0.0EG 0.02013-03-14
(1) contrib/gforge-3.0-cronjobs.patch, (2) cronjobs/homedirs.php, (3) deb-specific/fileforge.pl, (4) deb-specific/group_dump_update.pl, (5) deb-specific/ssh_dump_update.pl, (6) deb-specific/user_dump_update.pl, (7) plugins/scmbzr/common/Bz…
- CVE-2013-1429MEDIUMCVSS 6.3EG 6.32019-11-07
Lintian before 2.5.12 allows remote attackers to gather information about the "host" system using crafted symlinks.
- CVE-2013-1444NONECVSS 0.0EG 0.02013-09-30
A certain Debian patch for txt2man 1.5.5, as used in txt2man 1.5.5-2, 1.5.5-4, and others, allows local users to overwrite arbitrary files via a symlink attack on /tmp/2222.
- CVE-2013-1495NONECVSS 0.0EG 0.02013-03-18
asr in Oracle Auto Service Request in Oracle Support Tools before 4.3.2 allows local users to modify arbitrary files via a symlink attack on a predictable filename in /tmp.
- CVE-2013-1809HIGHCVSS 7.5EG 7.52019-11-07
Gambas before 3.4.0 allows remote attackers to move or manipulate directory contents or perform symlink attacks due to the creation of insecure temporary directories.
- CVE-2013-1866MEDIUMCVSS 6.1EG 6.12020-01-30
OpenSC OpenSC.tokend has an Arbitrary File Creation/Overwrite Vulnerability
- CVE-2013-1867MEDIUMCVSS 6.1EG 6.12020-01-30
Gemalto Tokend 2013 has an Arbitrary File Creation/Overwrite Vulnerability
- CVE-2013-1976NONECVSS 0.0EG 0.02013-07-09
The (1) tomcat5, (2) tomcat6, and (3) tomcat7 init scripts, as used in the RPM distribution of Tomcat for JBoss Enterprise Web Server 1.0.2 and 2.0.0, and Red Hat Enterprise Linux 5 and 6, allow local users to change the ownership of arbit…
- CVE-2013-2029NONECVSS 0.0EG 0.02013-11-23
nagios.upgrade_to_v3.sh, as distributed by Red Hat and possibly others for Nagios Core 3.4.4, 3.5.1, and earlier, allows local users to overwrite arbitrary files via a symlink attack on a temporary nagioscfg file with a predictable name in…
- CVE-2013-2105NONECVSS 0.0EG 0.02014-04-22
The Show In Browser (show_in_browser) gem 0.0.3 for Ruby allows local users to inject arbitrary web script or HTML via a symlink attack on /tmp/browser.html.
- CVE-2013-2142NONECVSS 0.0EG 0.02014-01-19
userpref.c in libimobiledevice 1.1.4, when $HOME and $XDG_CONFIG_HOME are not set, allows local users to overwrite arbitrary files via a symlink attack on (1) HostCertificate.pem, (2) HostPrivateKey.pem, (3) libimobiledevicerc, (4) RootCer…
- CVE-2013-2561NONECVSS 0.0EG 0.02013-11-23
OpenFabrics ibutils 1.5.7 allows local users to overwrite arbitrary files via a symlink attack on (1) ibdiagnet.db, (2) ibdiagnet.fdbs, (3) ibdiagnet_ibis.log, (4) ibdiagnet.log, (5) ibdiagnet.lst, (6) ibdiagnet.mcfdbs, (7) ibdiagnet.pkey,…
- CVE-2013-3368NONECVSS 0.0EG 0.02013-08-23
bin/rt in Request Tracker (RT) 3.8.x before 3.8.17 and 4.0.x before 4.0.13 allows local users to overwrite arbitrary files via a symlink attack on a temporary file with predictable name.
- CVE-2013-4157NONECVSS 0.0EG 0.02013-10-04
Red Hat Storage 2.0 allows local users to overwrite arbitrary files via a symlink attack on the (1) e, (2) local-bricks.list, (3) bricks.err, or (4) limits.conf files in /tmp.
- CVE-2013-4169NONECVSS 0.0EG 0.02013-09-10
GNOME Display Manager (gdm) before 2.21.1 allows local users to change permissions of arbitrary directories via a symlink attack on /tmp/.X11-unix/.
- CVE-2013-4184MEDIUMCVSS 5.5EG 5.52019-12-10
Perl module Data::UUID from CPAN version 1.219 vulnerable to symlink attacks
- CVE-2013-4214NONECVSS 0.0EG 0.02013-11-23
rss-newsfeed.php in Nagios Core 3.4.4, 3.5.1, and earlier, when MAGPIE_CACHE_ON is set to 1, allows local users to overwrite arbitrary files via a symlink attack on /tmp/magpie_cache.
- CVE-2013-4215NONECVSS 0.0EG 0.02014-05-05
The IPXPING_COMMAND in contrib/check_ipxping.c in Nagios Plugins 1.4.16 allows local users to gain privileges via a symlink attack on /tmp/ipxping/ipxping.
- CVE-2013-4262NONECVSS 0.0EG 0.02014-07-28
svnwcsub.py in Subversion 1.8.0 before 1.8.3, when using the --pidfile option and running in foreground mode, allows local users to gain privileges via a symlink attack on the pid file. NOTE: this issue was SPLIT due to different affected…
- CVE-2013-4364HIGHCVSS 7.8EG 7.82018-01-08
(1) oo-analytics-export and (2) oo-analytics-import in the openshift-origin-broker-util package in Red Hat OpenShift Enterprise 1 and 2 allow local users to have unspecified impact via a symlink attack on an unspecified file in /tmp.
- CVE-2013-4392MEDIUMCVSS 5.0EG 5.02013-10-28
systemd, when updating file permissions, allows local users to change the permissions and SELinux security contexts for arbitrary files via a symlink attack on unspecified files.
- CVE-2013-4472NONECVSS 0.0EG 0.02014-04-22
The openTempFile function in goo/gfile.cc in Xpdf and Poppler 0.24.3 and earlier, when running on a system other than Unix, allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names.
- CVE-2013-4655HIGHCVSS 7.5EG 7.52019-11-13
Symlink Traversal vulnerability in Belkin N900 due to misconfiguration in the SMB service.
- CVE-2013-4969NONECVSS 0.0EG 0.02014-01-07
Puppet before 3.3.3 and 3.4 before 3.4.1 and Puppet Enterprise (PE) before 2.8.4 and 3.1 before 3.1.1 allows local users to overwrite arbitrary files via a symlink attack on unspecified files.
- CVE-2013-6124NONECVSS 0.0EG 0.02014-08-31
The Qualcomm Innovation Center (QuIC) init scripts in Code Aurora Forum (CAF) releases of Android 4.1.x through 4.4.x allow local users to modify file metadata via a symlink attack on a file accessed by a (1) chown or (2) chmod command, as…
Map vulnerabilities like CWE-59 to your infrastructure
EchelonGraph correlates every CVE — across CWE-59 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →