Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-59

CWE-59

Medium likelihood

Improper Link Resolution Before File Access ('Link Following')

Parent: CWE-706 - Use of Incorrectly-Resolved Name or Reference

The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

1,463 vulnerabilities with CWE-59

CVE-2025-15319 HIGH

Tanium Patch Endpoint Tools - Privilege Escalation

CVE-2025-15318 MEDIUM

Tanium - Path Traversal

CVE-2025-15328 MEDIUM

Enforce < 2.7.314 - Symlink Following

CVE-2025-15324 MEDIUM

Tanium Engage < 1.3.37 - Symlink Following

CVE-2025-69431 MEDIUM

Zspace Q2c Firmware < 1.1.0210050 - Symlink Following

CVE-2025-69430 MEDIUM

Yottamaster Dm2 Firmware < 1.9.12 - Symlink Following

CVE-2025-69429 MEDIUM

Orico Cd3510 Firmware < 1.9.12 - Symlink Following

CVE-2025-15543 MEDIUM

VX800v 1.0 - Info Disclosure

CVE-2025-15541 MEDIUM

VX800v v1.0 - Path Traversal

CVE-2025-67124 MEDIUM

Svenstaro Miniserve < 0.32.0 - Symlink Following

CVE-2025-13154 MEDIUM

Lenovo Vantage - Privilege Escalation

CVE-2025-53594 MEDIUM

Qfinder Pro Mac <7.13.0 - Path Traversal

CVE-2025-12838 HIGH

MSP360 Free Backup - Privilege Escalation

CVE-2025-68279 HIGH

Weblate < 5.15.1 - Information Disclosure

CVE-2025-68146 MEDIUM

Pypi Filelock < 3.20.1 - Race Condition

CVE-2025-14693 MEDIUM

Ugreen DH2100+ <5.3.0 - Symlink Following

CVE-2025-43461 MEDIUM

macOS Tahoe <26.1 - Info Disclosure

CVE-2025-43381 MEDIUM

macOS Tahoe <26.1 - Info Disclosure

CVE-2025-7073 HIGH

Bitdefender Antivirus < 30.0.25.77 - Symlink Following

CVE-2025-66626 HIGH

Argo Workflows <3.7.4 - Code Injection

CVE-2025-46637 HIGH

Dell Encryption <11.12.1 - Privilege Escalation

CVE-2025-46636 MEDIUM

Dell Encryption <11.12.1 - Info Disclosure

CVE-2025-67487 HIGH

Static-web-server Static Web Server < 2.40.0 - Symlink Following

CVE-2025-65843 HIGH

Aquarius Desktop 3.0.069 - Path Traversal

CVE-2025-34352 HIGH

JumpCloud Remote Assist for Windows <0.317.0 - Privilege Escalation

Previous Page 4 of 59 Next

Details

Vulnerabilities 1,463

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy