Weaknesses of type CWE-61
144 resultsCVE-2021-32550HIGHapport read_file() function could follow maliciously constructed symbolic linksEPSS 0.3%CVE-2021-32552HIGHapport read_file() function could follow maliciously constructed symbolic linksEPSS 0.3%CVE-2021-32555HIGHapport read_file() function could follow maliciously constructed symbolic linksEPSS 0.3%CVE-2025-30485MEDIUMUNIX symbolic link (Symlink) following issue exists in FutureNet NXR series, VXR series and WXR series routers. Attaching to the affected prEPSS 0.3%CVE-2025-33225HIGHNVIDIA Resiliency Extension for Linux contains a vulnerability in log aggregation, where an attacker could cause predictable log-file names.EPSS 0.3%CVE-2024-27872MEDIUMThis issue was addressed with improved validation of symlinks. This issue is fixed in macOS Sonoma 14.6. An app may be able to access protecEPSS 0.3%CVE-2024-23285HIGHThis issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sonoma 14.4. An app may be able to create symlinksEPSS 0.2%CVE-2026-34447MEDIUMONNX: External Data Symlink TraversalEPSS 0.2%CVE-2021-1612MEDIUMCisco IOS XE SD-WAN Software Arbitrary File Overwrite VulnerabilityEPSS 0.2%CVE-2026-31893MEDIUMTunnelblick arbitrary file read via symlink following in tunnelblickdEPSS 0.2%CVE-2025-43853HIGHiwasm vulnerable to filesystem sandbox escape with symlink when using uvwasi featureEPSS 0.2%CVE-2026-28684MEDIUMpython-dotenv: Symlink following in set_key allows arbitrary file overwrite via cross-device rename fallbackEPSS 0.2%CVE-2024-44132HIGHThis issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia 15. An app may be able to break out of itsEPSS 0.2%CVE-2026-24018HIGHA UNIX symbolic link (Symlink) following vulnerability in Fortinet FortiClientLinux 7.4.0 through 7.4.4, FortiClientLinux 7.2.2 through 7.2.EPSS 0.2%CVE-2025-62596HIGHyouki container escape and denial of service due to arbitrary write gadgets and procfs write redirectsEPSS 0.2%CVE-2026-23986MEDIUMCopier safe template has arbitrary filesystem write access via directory symlinks when _preserve_symlinks: trueEPSS 0.2%CVE-2025-11489LOWwonderwhy-er DesktopCommanderMCP filesystem.ts isPathAllowed symlinkEPSS 0.2%CVE-2026-27485MEDIUMOpenClaw affected by Stored XSS in Control UI via unsanitized assistant name/avatar in inline script injectionEPSS 0.2%CVE-2025-62161HIGHyouki container escape via "masked path" abuse due to mount race conditionsEPSS 0.2%CVE-2024-52522MEDIUMRclone Improper Permission and Ownership Handling on Symlink Targets with --links and --metadataEPSS 0.2%