Vulnerabilities > Improper Link Resolution Before File Access ('Link Following')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-08-13 | CVE-2019-20383 | Link Following vulnerability in Abbyy Finereader ABBYY network license server in ABBYY FineReader 15 before Release 4 (aka 15.0.112.2130) allows escalation of privileges by local users via manipulations involving files and using symbolic links. | 7.8 |
| 2020-08-13 | CVE-2020-24332 | Link Following vulnerability in multiple products An issue was discovered in TrouSerS through 0.3.14. | 5.5 |
| 2020-08-04 | CVE-2020-6012 | Link Following vulnerability in Checkpoint Zonealarm Anti-Ransomware 1.0.0601/1.0.710 ZoneAlarm Anti-Ransomware before version 1.0.713 copies files for the report from a directory with low privileges. | 7.4 |
| 2020-07-28 | CVE-2020-11474 | Link Following vulnerability in Ncp-E Secure Enterprise Client 10.14/10.15 NCP Secure Enterprise Client before 10.15 r47589 allows a symbolic link attack on enumusb.reg via Support Assistant. | 7.8 |
| 2020-07-24 | CVE-2020-15932 | Link Following vulnerability in Overwolf Overwolf before 0.149.2.30 mishandles Symbolic Links during updates, causing elevation of privileges. | 8.8 |
| 2020-07-17 | CVE-2020-9682 | Link Following vulnerability in Adobe Creative Cloud Desktop Application Adobe Creative Cloud Desktop Application versions 5.1 and earlier have a symlink vulnerability vulnerability. | 9.8 |
| 2020-07-17 | CVE-2020-9670 | Link Following vulnerability in Adobe Creative Cloud Desktop Application Adobe Creative Cloud Desktop Application versions 5.1 and earlier have a symlink vulnerability vulnerability. | 9.8 |
| 2020-07-16 | CVE-2020-3437 | Link Following vulnerability in Cisco Sd-Wan Firmware A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to read arbitrary files on the underlying filesystem of the device. | 6.5 |
| 2020-07-03 | CVE-2020-7282 | Link Following vulnerability in Mcafee Total Protection Privilege Escalation vulnerability in McAfee Total Protection (MTP) before 16.0.R26 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. | 6.3 |
| 2020-06-30 | CVE-2020-13095 | Link Following vulnerability in Obdev Little Snitch Little Snitch version 4.5.1 and older changed ownership of a directory path controlled by the user. | 8.8 |