BaseDraft
CWE-59Improper Link Resolution Before File Access ('Link Following')
Category: other
Description
The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.
Common consequences· 2
- Confidentiality / Integrity / Access Control — Read Files or Directories, Modify Files or Directories, Bypass Protection MechanismAn attacker may be able to traverse the file system to unintended locations and read or overwrite the contents of unexpected files. If the files are used for a security mechanism then an attacker may be able to bypass the mechanism.
- Other — Execute Unauthorized Code or CommandsWindows simple shortcuts, sometimes referred to as soft links, can be exploited remotely since a ".LNK" file can be uploaded like a normal file. This can enable remote execution.
Potential mitigations· 1
- [Architecture and Design]
Related CAPEC attack patterns· 4
References
Exploits (incoming)4
| Type | Target | Confidence | Tier |
|---|---|---|---|
| AttackPattern | Using Malicious Filescapec-17 | 100% | live |
| AttackPattern | Symlink Attackcapec-132 | 100% | live |
| AttackPattern | Manipulating Web Input to File System Callscapec-76 | 100% | live |
| AttackPattern | Leverage Executable Code in Non-Executable Filescapec-35 | 100% | live |
(incoming)49
| Type | Target | Confidence | Tier |
|---|---|---|---|
| Vulnerability | CVE-2025-0377cve-2025-0377 | 0% | live |
| Vulnerability | CVE-2025-15314cve-2025-15314 | 0% | live |
| Vulnerability | CVE-2025-20003cve-2025-20003 | 0% | live |
| Vulnerability | Microsoft Windows Storage Link Following Vulnerabilitycve-2025-21391 | 0% | live |
| Vulnerability | CVE-2025-23267cve-2025-23267 | 0% | live |
| Vulnerability | CVE-2025-30457cve-2025-30457 | 0% | live |
| Vulnerability | CVE-2025-34191cve-2025-34191 | 0% | live |
| Vulnerability | CVE-2025-41666cve-2025-41666 | 0% | live |
| Vulnerability | CVE-2025-41667cve-2025-41667 | 0% | live |
| Vulnerability | CVE-2025-41668cve-2025-41668 | 0% | live |
| Vulnerability | CVE-2025-43220cve-2025-43220 | 0% | live |
| Vulnerability | CVE-2025-43257cve-2025-43257 | 0% | live |
| Vulnerability | CVE-2025-47181cve-2025-47181 | 0% | live |
| Vulnerability | Git Link Following Vulnerabilitycve-2025-48384 | 0% | live |
| Vulnerability | CVE-2025-48582cve-2025-48582 | 0% | live |
| Vulnerability | CVE-2025-49739cve-2025-49739 | 0% | live |
| Vulnerability | Microsoft Windows Link Following Vulnerabilitycve-2025-60710 | 0% | live |
| Vulnerability | CVE-2025-66277cve-2025-66277 | 0% | live |
| Vulnerability | CVE-2025-67487cve-2025-67487 | 0% | live |
| Vulnerability | CVE-2026-24842cve-2026-24842 | 0% | live |
| Vulnerability | CVE-2026-32013cve-2026-32013 | 0% | live |
| Vulnerability | CVE-2026-33001cve-2026-33001 | 0% | live |
| Vulnerability | CVE-2026-34603cve-2026-34603 | 0% | live |
| Vulnerability | CVE-2026-34604cve-2026-34604 | 0% | live |
| Vulnerability | Microsoft Defender Link Following Vulnerabilitycve-2026-41091 | 0% | live |
| Vulnerability | CVE-2026-41364cve-2026-41364 | 0% | live |
| Vulnerability | CVE-2026-41397cve-2026-41397 | 0% | live |
| Vulnerability | CVE-2026-41433cve-2026-41433 | 0% | live |
| Vulnerability | CVE-2026-43989cve-2026-43989 | 0% | live |
| Vulnerability | CVE-2026-43998cve-2026-43998 | 0% | live |
Showing top 30 of 49 by confidence. Click any target to see the full neighbourhood.
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.