Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-59

CWE-59

Medium likelihood

Improper Link Resolution Before File Access ('Link Following')

Parent: CWE-706 - Use of Incorrectly-Resolved Name or Reference

The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

1,520 vulnerabilities with CWE-59

CVE-2023-7216 MEDIUM

GNU cpio - Path Traversal via Symlink Handling

CVE-2023-52138 HIGH

Engrampa < 1.26.2 - Path Traversal and Remote Code Execution via CPIO Archive Symlink Handling

CVE-2023-52338 HIGH

Trend Micro Deep Security 20.0 - Privilege Escalation via Link Following

CVE-2023-52094 HIGH

Trend Micro Apex One - Privilege Escalation

CVE-2023-52092 HIGH

Trend Micro Apex One - Privilege Escalation

CVE-2023-52091 HIGH

Trend Micro Apex One - Privilege Escalation

CVE-2023-52090 HIGH

Trend Micro Apex One - Privilege Escalation

CVE-2023-47192 HIGH

Trend Micro Apex One - Privilege Escalation via Agent Link Vulnerability

CVE-2023-6336 HIGH

HYPR Workforce Access <8.7 - Path Traversal

CVE-2023-6335 MEDIUM

HYPR Workforce Access <8.7 - Path Traversal

CVE-2023-42137 HIGH

PAX PayDroid < 8.1.0_sagittarius_11.1.50_20230614 - Authenticated Privilege Escalation via Symlink Attack

CVE-2023-31003 HIGH

IBM Security Verify Access - Privilege Escalation

CVE-2023-51654 MEDIUM

Brother iPrint&Scan < 11.0.0 - Denial of Service via Symlink Attack

CVE-2023-28872 HIGH

NCP Secure Enterprise Client <13.10 - RCE

CVE-2023-43116 HIGH

Buildkite Elastic CI - Privilege Escalation

CVE-2023-36391 HIGH

Local Security Authority Subsystem Service - Privilege Escalation

CVE-2023-35633 HIGH

Windows 10 1507 < 10.0.10240.20345 - Privilege Escalation via Improper Link Resolution

CVE-2023-35624 HIGH

Azure Connected Machine Agent < 1.37 - Elevation of Privilege via Improper Link Resolution

CVE-2023-28871 MEDIUM

NCP Secure Enterprise Client <12.22 - Info Disclosure

CVE-2023-28869 MEDIUM

NCP Secure Enterprise Client <12.22 - Info Disclosure

CVE-2023-28868 HIGH

NCP Secure Enterprise Client <12.22 - Privilege Escalation

CVE-2023-39246 MEDIUM

Dell Endpoint Security Suite Enterprise < 11.8.1 - Privilege Escalation via Windows Junction

CVE-2023-43590 HIGH

Zoom Rooms for macOS <5.16.0 - Privilege Escalation

CVE-2023-36705 HIGH

Windows Installer < - Privilege Escalation

CVE-2023-36399 HIGH

Windows Storage - Privilege Escalation

Previous Page 18 of 61 Next

Details

Vulnerabilities 1,520

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy