Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-59 (在文件访问前对链接解析不恰当(链接跟随)) — Vulnerability Class 418

418 vulnerabilities classified as CWE-59 (在文件访问前对链接解析不恰当(链接跟随)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-13962 Link Following Local Privilege Escalation Vulnerability in Avast Cleanup Premium Version 24.2.16593.17810 — CleanUp Premium 7.8 High2025-05-09
CVE-2024-13961 Avast Cleanup Premium TuneupSvc Link Following Local Privilege Escalation Vulnerability — CleanUp Premium 7.8 High2025-05-09
CVE-2024-13960 Link Following Local Privilege Escalation Vulnerability in AVG TuneUp Version 23.4 — TuneUp 7.8 High2025-05-09
CVE-2024-13959 Link Following Local Privilege Escalation Vulnerability in AVG TuneUp 24.2.16593.9844 — TuneUp 7.8 High2025-05-09
CVE-2024-13759 Local Privilege Escalation in Avira Prime 1.1.96.2 on Windows 10 x64 — Prime 7.8 High2025-05-09
CVE-2025-1697 HP Touchpoint Analytics Service – Potential Escalation of Privilege — HP Touchpoint Analytics Service 7.8 -2025-04-18
CVE-2025-32817 SonicWALL Connect Tunnel 安全漏洞 — Connect Tunnel 8.4AIHighAI2025-04-16
CVE-2025-29983 Dell Trusted Device 后置链接漏洞 — Dell Trusted Device Client 6.7 Medium2025-04-15
CVE-2025-23010 SonicWALL NetExtender Windows client 安全漏洞 — NetExtender 7.5AIHighAI2025-04-10
CVE-2025-27727 Windows Installer Elevation of Privilege Vulnerability — Windows 10 Version 1507 7.8 High2025-04-08
CVE-2025-21204 Windows Process Activation Elevation of Privilege Vulnerability — Windows 10 Version 1507 7.8 High2025-04-08
CVE-2025-30371 Metabase vulnerable to circumvention of local link access protection in GeoJson endpoint — metabase 6.1 -2025-03-28
CVE-2024-12905 tar-fs 安全漏洞 7.5 High2025-03-27
CVE-2025-29795 Microsoft Edge (Chromium-based) Update Elevation of Privilege Vulnerability — Microsoft Edge Update Setup 7.8 High2025-03-23
CVE-2024-10986 Local File Read (LFI) by Tarslip Symlink via arxiv_download() API in binary-husky/gpt_academic — binary-husky/gpt_academic 7.5 -2025-03-20
CVE-2024-12390 Remote Code Execution in binary-husky/gpt_academic — binary-husky/gpt_academic 8.8 -2025-03-20
CVE-2024-12216 Arbitrary File Write via TarSlip in dmlc/gluon-cv — dmlc/gluon-cv 6.5 -2025-03-20
CVE-2025-1683 Symbolic Link Exploit in 1E Client's - Nomad module allows Arbitrary File Deletion — 1E Client 7.8 High2025-03-12
CVE-2025-25008 Windows Server Elevation of Privilege Vulnerability — Windows Server 2016 7.1 High2025-03-11
CVE-2025-25185 GPT Academic allows arbitary file read by tarfile uncompress within softlink — gpt_academic 7.5 High2025-03-03
CVE-2020-3432 Cisco AnyConnect Secure Mobility Client for Mac OS File Corruption Vulnerability — Cisco Secure Client 5.5 -2025-02-11
CVE-2025-21373 Windows Installer Elevation of Privilege Vulnerability — Windows 10 Version 1507 7.8 High2025-02-11
CVE-2025-21322 Microsoft PC Manager Elevation of Privilege Vulnerability — Microsoft PC Manager 7.8 High2025-02-11
CVE-2025-21347 Windows Deployment Services Denial of Service Vulnerability — Windows 10 Version 1507 6.0 Medium2025-02-11
CVE-2025-21420 Windows Disk Cleanup Tool Elevation of Privilege Vulnerability — Windows 10 Version 1507 7.8 High2025-02-11
CVE-2025-21419 Windows Setup Files Cleanup Elevation of Privilege Vulnerability — Windows 10 Version 1507 7.1 High2025-02-11
CVE-2025-21391 Windows Storage Elevation of Privilege Vulnerability — Windows 10 Version 1507 7.1 High2025-02-11
CVE-2025-21188 Azure Network Watcher VM Extension Elevation of Privilege Vulnerability — Azure Network Watcher VM Extension 6.0 Medium2025-02-11
CVE-2025-0413 Parallels Desktop Technical Data Reporter Link Following Local Privilege Escalation Vulnerability — Desktop 7.8 -2025-02-04
CVE-2025-0146 Zoom Workplace app for macOS - Symlink Following — Zoom Workplace app for macOS 3.9 Low2025-01-30

Vulnerabilities classified as CWE-59 (在文件访问前对链接解析不恰当(链接跟随)) represent 418 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.