CVE-2025-5296

high

Description

Improper Link Resolution Before File Access ('Link Following') vulnerability exists that could causearbitrary data to be written to protected locations, potentially leading to escalation of privilege, arbitrary filecorruption, exposure of application and system information or persistent denial of service when a low-privilegedattacker tampers with the installation folder.

Details

Source: Mitre, NVD

Published: 2025-08-14

Risk Information

CVSS v2

Base Score: 6.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:P

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

Detections

Analytics