Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-59

CWE-59

Medium likelihood

Improper Link Resolution Before File Access ('Link Following')

Parent: CWE-706 - Use of Incorrectly-Resolved Name or Reference

The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

1,518 vulnerabilities with CWE-59

CVE-2025-2102 MEDIUM

HYPR Passwordless <10.1 - Privilege Escalation

CVE-2025-3908 MEDIUM

OpenVPN 3 Linux <24 - Privilege Escalation

CVE-2025-4211 HIGH

Qt < - Privilege Escalation

CVE-2025-20003 HIGH

Intel(R) Graphics Driver - Privilege Escalation

CVE-2025-29975 HIGH

Microsoft PC Manager - Privilege Escalation

CVE-2025-29837 MEDIUM

Windows Installer - Info Disclosure

CVE-2025-1079 HIGH

Google Web Designer < 16.2.0.0128 - Remote Code Execution via Improper Symlink Resolution in Preview Feature

CVE-2025-22247 MEDIUM

VMware Tools 11.x.x-12.x.x < 12.5.2 - Insecure File Handling via Local File Tampering

CVE-2025-3224 HIGH

Docker Desktop for Windows <4.41.0 - Privilege Escalation

CVE-2025-1697 HIGH

HP Touchpoint Analytics <4.2.2439 - Privilege Escalation

CVE-2025-32817 MEDIUM

SonicWall Connect Tunnel - Path Traversal

CVE-2025-29983 MEDIUM

Dell Trusted Device <7.0.3.0 - Privilege Escalation

CVE-2025-23010 HIGH

SonicWall NetExtender - Path Traversal

CVE-2025-27727 HIGH

Windows 10 1507-22H2, Windows 11 22H2-24H2, Windows Server 2008 - Privilege Escalation via Improper Link Resolution

CVE-2025-21204 HIGH

Windows 10 1507-24H2 and Windows Server 2008 - Privilege Escalation via Improper Link Resolution

CVE-2025-30457 CRITICAL

macOS <13.7.5-15.4-14.7.5 - Path Traversal

CVE-2025-24278 MEDIUM

macOS < 13.7.5, < 14.7.5, < 15.4 - Unprotected User Data Exposure via Symlink Validation Bypass

CVE-2025-24242 MEDIUM

macOS < 15.4 - Unprotected User Data Exposure via Symlink Handling

CVE-2025-30371 LOW

Metabase <0.52.16.4, <1.52.16.4, <0.53.8, <1.53.8 - SSRF

CVE-2025-29795 HIGH

Microsoft Edge Update < 1.3.195.45 - Authenticated Privilege Escalation via Improper Link Resolution

CVE-2025-1683 HIGH

1E Platform < 25.3 - Arbitrary File Deletion via Symbolic Link

CVE-2025-25008 HIGH

Microsoft Windows - Privilege Escalation

CVE-2025-25185 HIGH

GPT Academic <3.91 - Info Disclosure

CVE-2025-22480 HIGH

Dell SupportAssist OS Recovery < 5.5.13.1 - Arbitrary File Deletion and Privilege Escalation

CVE-2025-21420 HIGH

Windows Disk Cleanup Tool - Elevation of Privilege via Improper Link Resolution

Previous Page 10 of 61 Next

Details

Vulnerabilities 1,518

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy