Weaknesses of type CWE-59
628 resultsCVE-2023-42137HIGHPAX Android based POS devices with PayDroid_8.1.0_Sagittarius_V11.1.50_20230614 or earlier can allow for command execution with high privileEPSS 0.5%CVE-2026-34242HIGHWeblate: Arbitrary File Read via SymlinkEPSS 0.5%CVE-2026-20941HIGHHost Process for Windows Tasks Elevation of Privilege VulnerabilityEPSS 0.5%CVE-2026-33748HIGHBuildKit Git URL subdir component can cause access to restricted filesEPSS 0.5%CVE-2019-10152HIGHA path traversal vulnerability has been discovered in podman before version 1.4.0 in the way it handles symlinks inside containers. An attacEPSS 0.5%CVE-2026-54094HIGHFile Browser: Symlink following lets scoped users read, overwrite, and share files outside their filebrowser scopeEPSS 0.5%CVE-2020-15861HIGHNet-SNMP through 5.7.3 allows Escalation of Privileges because of UNIX symbolic link (symlink) following.EPSS 0.5%CVE-2023-35320HIGHConnected User Experiences and Telemetry Elevation of Privilege VulnerabilityEPSS 0.5%CVE-2023-2939HIGHInsufficient data validation in Installer in Google Chrome on Windows prior to 114.0.5735.90 allowed a local attacker to perform privilege eEPSS 0.5%CVE-2025-43252MEDIUMThis issue was addressed by adding an additional prompt for user consent. This issue is fixed in macOS Sequoia 15.6. A website may be able tEPSS 0.4%CVE-2025-57749MEDIUMn8n has a symlink traversal vulnerability in "Read/Write File" node allows access to restricted filesEPSS 0.4%CVE-2025-29975HIGHMicrosoft PC Manager Elevation of Privilege VulnerabilityEPSS 0.4%CVE-2023-36568HIGHMicrosoft Office Click-To-Run Elevation of Privilege VulnerabilityEPSS 0.4%CVE-2008-4996MEDIUMinit in initramfs-tools 0.92f allows local users to overwrite arbitrary files via a symlink attack on the /tmp/initramfs.debug temporary filEPSS 0.4%CVE-2026-44340HIGHPraisonAI: Symlink-extraction bypass of `_safe_extractall` writes outside `dest_dir`EPSS 0.4%CVE-2026-24047MEDIUM@backstage/cli-common has a possible `resolveSafeChildPath` Symlink Chain BypassEPSS 0.4%CVE-2021-23872HIGHPrivilege Escalation vulnerability in McAfee Total Protection (MTP)EPSS 0.4%CVE-2019-3690MEDIUMchkstat follows untrusted symbolic linksEPSS 0.4%CVE-2019-18232—SafeNet Sentinel LDK License Manager, all versions prior to 7.101(only Microsoft Windows versions are affected) is vulnerable when configureEPSS 0.4%CVE-2023-32050HIGHWindows Installer Elevation of Privilege VulnerabilityEPSS 0.4%