Vulnerabilities > Improper Link Resolution Before File Access ('Link Following')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-15 | CVE-2023-20004 | Three vulnerabilities in the CLI of Cisco TelePresence CE and RoomOS could allow an authenticated, local attacker to overwrite arbitrary files on the local file system of an affected device. These vulnerabilities are due to improper access controls on files that are on the local file system. | 4.4 |
| 2024-10-28 | CVE-2024-44175 | Link Following vulnerability in Apple Macos This issue was addressed with improved validation of symlinks. | 5.5 |
| 2024-10-28 | CVE-2024-44258 | Link Following vulnerability in Apple products This issue was addressed with improved handling of symlinks. | 7.1 |
| 2024-10-28 | CVE-2024-44264 | Link Following vulnerability in Apple Macos This issue was addressed with improved validation of symlinks. | 5.5 |
| 2024-10-28 | CVE-2024-44273 | Link Following vulnerability in Apple products This issue was addressed with improved handling of symlinks. | 5.5 |
| 2024-10-01 | CVE-2024-9341 | Link Following vulnerability in multiple products A flaw was found in Go. | 8.2 |
| 2024-09-26 | CVE-2024-8404 | Link Following vulnerability in Papercut NG An arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows servers with Web Print enabled. | 7.8 |
| 2024-09-19 | CVE-2024-45770 | A vulnerability was found in Performance Co-Pilot (PCP). | 4.4 |
| 2024-09-18 | CVE-2024-46744 | Link Following vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: Squashfs: sanity check symbolic link size Syzkiller reports a "KMSAN: uninit-value in pick_link" bug. This is caused by an uninitialised page, which is ultimately caused by a corrupted symbolic link size read from disk. The reason why the corrupted symlink size causes an uninitialised page is due to the following sequence of events: 1. | 7.8 |
| 2024-09-17 | CVE-2024-44131 | Link Following vulnerability in Apple Macos This issue was addressed with improved validation of symlinks. | 5.5 |