Falhas do tipo CWE-59
629 resultadosCVE-2021-35937—A race condition vulnerability was found in rpm. A local unprivileged user could use this flaw to bypass the checks that were introduced in EPSS 0.3%CVE-2021-20197MEDIUMThere is an open race window when writing output in the following utilities in GNU binutils version 2.35 and earlier:ar, objcopy, strip, ranEPSS 0.3%CVE-2020-7282HIGHPrivilege Escalation vulnerability in McAfee Total Protection (MTP)EPSS 0.3%CVE-2026-32212MEDIUMUniversal Plug and Play (upnp.dll) Information Disclosure VulnerabilityEPSS 0.3%CVE-2024-7228MEDIUMAvast Free Antivirus Link Following Denial-of-Service VulnerabilityEPSS 0.3%CVE-2025-5718MEDIUMThe ACAP Application framework could allow privilege escalation through a symlink attack. This vulnerability can only be exploited if the AxEPSS 0.3%CVE-2022-38699MEDIUMASUS Armoury Crate Service - Arbitrary File Creation via Elevation of Privilege FlawEPSS 0.3%CVE-2024-7235MEDIUMAVG AntiVirus Free Link Following Denial-of-Service VulnerabilityEPSS 0.3%CVE-2022-31219HIGHDrive Composer Link Following Local Privilege Escalation VulnerabilityEPSS 0.3%CVE-2026-48921HIGHJenkins Pipeline: Groovy Libraries Plugin 797.v90ea_a_9b_e45a_0 and earlier does not prohibit symbolic links in shared libraries, allowing aEPSS 0.3%CVE-2025-67124MEDIUMA TOCTOU and symlink race in svenstaro/miniserve 0.32.0 upload finalization (when uploads are enabled) can allow an attacker to overwrite arEPSS 0.3%CVE-2021-31843HIGHImproper access control vulnerability in McAfee ENS for WindowsEPSS 0.3%CVE-2022-4563HIGHFreedom of the Press SecureDrop gpg-agent.conf symlinkEPSS 0.3%CVE-2021-32547HIGHapport read_file() function could follow maliciously constructed symbolic linksEPSS 0.3%CVE-2022-2145MEDIUMCloudlfare WARP Arbitrary File OverwriteEPSS 0.3%CVE-2024-6260HIGHMalwarebytes Antimalware Link Following Local Privilege Escalation VulnerabilityEPSS 0.3%CVE-2024-12216HIGHArbitrary File Write via TarSlip in dmlc/gluon-cvEPSS 0.3%CVE-2026-53476CRITICALAssisted-migration-agent: vddk tarball chained-symlink arbitrary file writeEPSS 0.3%CVE-2022-38730MEDIUMDocker Desktop for Windows before 4.6 allows attackers to overwrite any file through the windowscontainers/start dockerBackendV2 API by contEPSS 0.3%CVE-2026-45405CRITICALDokku: Arbitrary File Write via Tar Symlink Traversal in git:from-archive and certs:addEPSS 0.3%