Falhas do tipo CWE-59
629 resultadosCVE-2026-6892MEDIUMImproper handling of symbolic links in the installer of CUPS Printer Driver for macOS(*) may allow a local attacker with login privileges toEPSS 0.1%CVE-2026-6891MEDIUMImproper handling of symbolic links in the installer of My Image Garden for macOS Version 3.6.8 or earlier may allow a local attacker with lEPSS 0.1%CVE-2026-54230HIGHAbrt: event handler scripts follow symlinks when writing output files, allowing arbitrary file overwritesEPSS 0.1%CVE-2025-13154MEDIUMAn improper link following vulnerability was reported in the SmartPerformanceAddin for Lenovo Vantage that could allow an authenticated locaEPSS 0.1%CVE-2026-27456MEDIUMutil-linux: TOCTOU Race Condition in util-linux mount(8) - Loop Device SetupEPSS 0.1%CVE-2026-4135MEDIUMDuring an internal security assessment, a potential vulnerability was discovered in Lenovo Software Fix, that during installation could alloEPSS 0.1%CVE-2026-22701MEDIUMfilelock Time-of-Check-Time-of-Use (TOCTOU) Symlink Vulnerability in SoftFileLockEPSS 0.1%CVE-2025-53594MEDIUMQfinder Pro, Qsync, QVPNEPSS 0.1%CVE-2026-40977MEDIUMWhen an application is configured to use `ApplicationPidFileWriter`, a local attacker with write access to the PID file's location can corruEPSS 0.1%CVE-2025-24918MEDIUMImproper link resolution before file access ('link following') for some Intel(R) Server Configuration Utility software and Intel(R) Server FEPSS 0.1%CVE-2026-5061MEDIUMConsul-template vulnerable to sandbox path bypass in file helper via a symlink attackEPSS 0.1%CVE-2026-28689MEDIUMImageMagick has a Path Policy TOCTOU symlink race bypassEPSS 0.1%CVE-2025-48582HIGHIn multiple locations, there is a possible way to delete media without the MANAGE_EXTERNAL_STORAGE permission due to an intent redirect. ThiEPSS 0.1%CVE-2026-35359MEDIUMuutils coreutils cp Information Disclosure via Time-of-Check to Time-of-Use Symlink SwapEPSS 0.1%CVE-2026-27105MEDIUMDell/Alienware Purchased Apps, versions prior to 1.1.31.0, contain an Improper Link Resolution Before File Access ('Link Following') vulneraEPSS 0.1%CVE-2026-44275MEDIUMDell/Alienware Purchased Apps, versions prior to 1.1.32.0, contain an Improper Link Resolution Before File Access ('Link Following') vulneraEPSS 0.1%CVE-2026-35345MEDIUMuutils coreutils tail Privileged Information Disclosure via Symlink Replacement RaceEPSS 0.1%CVE-2026-28262MEDIUMDell iDRAC Tools, versions prior to 11.4.1.0, contains an Improper Link Resolution Before File Access ('Link Following') vulnerability. A loEPSS 0.1%CVE-2026-12567LOWSymlink-following arbitrary write via github_workflows moduleEPSS 0.1%CVE-2025-46637HIGHDell Encryption, versions prior to 11.12.1, contain an Improper Link Resolution Before File Access ('Link Following') vulnerability. A localEPSS 0.1%