Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-61

CWE-61

High likelihood

UNIX Symbolic Link (Symlink) Following

Parent: CWE-59 - Improper Link Resolution Before File Access ('Link Following')

The product, when opening a file or directory, does not sufficiently account for when the file is a symbolic link that resolves to a target outside of the intended control sphere. This could allow an attacker to cause the product to operate on unauthorized files.

125 vulnerabilities with CWE-61

CVE-2025-5468 MEDIUM

Ivanti Connect Secure <22.7R2.8, Policy Secure <22.7R1.5, ZTA Gatew...

CVE-2025-36564 HIGH

Dell Encryption < 11.10.2 - Symlink Following

CVE-2025-23394 CRITICAL

openSUSE Tumbleweed cyrus-imapd <3.8.4.2.1 - Privilege Escalation

CVE-2025-43853 MEDIUM

WAMR <2.2.0 - Path Traversal

CVE-2025-1079 HIGH

Google Web Designer - RCE

CVE-2025-30485 MEDIUM

FutureNet NXR/WXR/VXR - Info Disclosure

CVE-2025-3048 MEDIUM

AWS SAM CLI <1.134.0 - Info Disclosure

CVE-2025-3047 MEDIUM

SAM CLI <v1.133.0 - Privilege Escalation

CVE-2025-29787 HIGH

Crates.io Zip < 2.3.0 - Path Traversal

CVE-2025-24832 MEDIUM

Acronis Backup - Privilege Escalation

CVE-2025-22480 HIGH

Dell Supportassist OS Recovery < 5.5.13.1 - Symlink Following

CVE-2025-24886 HIGH

pwn.college - LFI

CVE-2024-45418 MEDIUM

Zoom <6.1.5 - Privilege Escalation

CVE-2024-52535 HIGH

Dell Supportassist For Business Pcs < 4.5.1 - Symlink Following

CVE-2024-47515 HIGH

Pagure - Info Disclosure

CVE-2024-54148 CRITICAL

Gogs - Path Traversal

CVE-2024-47480 HIGH

Dell Inventory Collector Client <12.7.0 - Privilege Escalation

CVE-2024-52542 MEDIUM

Dell Appsync < 4.6.0.3 - Symlink Following

CVE-2024-52537 MEDIUM

Dell Dock Hd22q Firmware Update Utility < 1.00.23 - Symlink Following

CVE-2024-54661 CRITICAL

socat <1.8.0.2 - Info Disclosure

CVE-2024-52522 MEDIUM

Rclone < 1.68.2 - Symlink Following

CVE-2024-34015 LOW

Acronis Backup <1.8.3.818-1.9.1.892 - Info Disclosure

CVE-2024-34014 MEDIUM

Acronis Backup - Improper Symbolic Link Handling

CVE-2024-0134 MEDIUM

NVIDIA Container Toolkit - Info Disclosure

CVE-2024-47877 HIGH

Extract <4.0.0 - Path Traversal

Previous Page 3 of 5 Next

Details

Vulnerabilities 125

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy