Vulnerabilities > Improper Link Resolution Before File Access ('Link Following')

DATE	CVE	VULNERABILITY TITLE	RISK
2019-11-19	CVE-2011-2924	Link Following vulnerability in multiple products foomatic-rip filter v4.0.12 and prior used insecurely creates temporary files for storage of PostScript data by rendering the data when the debug mode was enabled. local low complexity linuxfoundation debian fedoraproject CWE-59	5.5
2019-11-19	CVE-2011-2923	Link Following vulnerability in multiple products foomatic-rip filter, all versions, used insecurely creates temporary files for storage of PostScript data by rendering the data when the debug mode was enabled. local low complexity linuxfoundation debian CWE-59	5.5
2019-11-18	CVE-2008-7273	Link Following vulnerability in Getfiregpg Iceweasel-Firegpg A symlink issue exists in Iceweasel-firegpg before 0.6 due to insecure tempfile handling. local low complexity getfiregpg CWE-59	7.8
2019-11-14	CVE-2011-1136	Link Following vulnerability in multiple products In tesseract 2.03 and 2.04, an attacker can rewrite an arbitrary user file by guessing the PID and creating a link to the user's file. local high complexity tesseract-project debian CWE-59	4.7
2019-11-13	CVE-2010-4817	Link Following vulnerability in multiple products pithos before 0.3.5 allows overwrite of arbitrary files via symlinks. local low complexity pithos-project debian CWE-59	5.5
2019-11-13	CVE-2019-18837	Link Following vulnerability in multiple products An issue was discovered in crun before 0.10.5. network low complexity crun-project fedoraproject CWE-59	8.6
2019-11-13	CVE-2013-4655	Link Following vulnerability in Belkin N900 Firmware Symlink Traversal vulnerability in Belkin N900 due to misconfiguration in the SMB service. network low complexity belkin CWE-59	7.5
2019-11-12	CVE-2010-3095	Link Following vulnerability in Mailscanner mailscanner before 4.79.11-2.1 might allow local users to overwrite arbitrary files via a symlink attack on certain temporary files. local high complexity mailscanner CWE-59	4.7
2019-11-12	CVE-2019-1425	Link Following vulnerability in Microsoft Visual Studio 2017 and Visual Studio 2019 An elevation of privilege vulnerability exists when Visual Studio fails to properly validate hardlinks while extracting archived files, aka 'Visual Studio Elevation of Privilege Vulnerability'. network low complexity microsoft CWE-59	6.5
2019-11-12	CVE-2019-1423	Link Following vulnerability in Microsoft Windows 10 1903 An elevation of privilege vulnerability exists in the way that the StartTileData.dll handles file creation in protected locations, aka 'Windows Elevation of Privilege Vulnerability'. local low complexity microsoft CWE-59	7.8