Vulnerabilities > Improper Link Resolution Before File Access ('Link Following')

DATE CVE VULNERABILITY TITLE RISK
2024-09-26 CVE-2024-8404 Link Following vulnerability in Papercut NG
An arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows servers with Web Print enabled.
local
low complexity
papercut CWE-59
7.8
2024-09-19 CVE-2024-45770 A vulnerability was found in Performance Co-Pilot (PCP).
local
low complexity
CWE-59
4.4
2024-09-18 CVE-2024-46744 Link Following vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: Squashfs: sanity check symbolic link size Syzkiller reports a "KMSAN: uninit-value in pick_link" bug. This is caused by an uninitialised page, which is ultimately caused by a corrupted symbolic link size read from disk. The reason why the corrupted symlink size causes an uninitialised page is due to the following sequence of events: 1.
local
low complexity
linux CWE-59
7.8
2024-09-17 CVE-2024-44131 Link Following vulnerability in Apple Macos
This issue was addressed with improved validation of symlinks.
local
low complexity
apple CWE-59
5.5
2024-09-17 CVE-2024-44132 Link Following vulnerability in Apple Macos
This issue was addressed with improved handling of symlinks.
local
low complexity
apple CWE-59
8.8
2024-09-17 CVE-2024-44178 Link Following vulnerability in Apple Macos
This issue was addressed with improved validation of symlinks.
local
low complexity
apple CWE-59
5.5
2024-08-31 CVE-2024-39578 Link Following vulnerability in Dell Powerscale Onefs
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.1 contains a UNIX symbolic link (symlink) following vulnerability.
local
low complexity
dell CWE-59
6.3
2024-08-21 CVE-2024-5928 Link Following vulnerability in Vipre Advanced Security 12.0.1.214
VIPRE Advanced Security PMAgent Link Following Local Privilege Escalation Vulnerability.
local
low complexity
vipre CWE-59
7.8
2024-07-29 CVE-2024-7249 Link Following vulnerability in Comodo Firewall 12.2.2.8012
Comodo Firewall Link Following Local Privilege Escalation Vulnerability.
local
low complexity
comodo CWE-59
7.8
2024-07-29 CVE-2024-7250 Link Following vulnerability in Comodo Internet Security 12.2.4.8032
Comodo Internet Security Pro cmdagent Link Following Local Privilege Escalation Vulnerability.
local
low complexity
comodo CWE-59
7.8