cvedb.io
CVE-2025-5296
HIGH · CVSS 7.3
EPSS exploitation probability: 0%
Published 2025-08-18T08:15:27.820 · Last modified 2026-06-17T09:47:37.960

Summary

CWE-59: Improper Link Resolution Before File Access ('Link Following') vulnerability exists that could cause arbitrary data to be written to protected locations, potentially leading to escalation of privilege, arbitrary file corruption, exposure of application and system information or persistent denial of service when a low-privileged attacker tampers with the installation folder.

Does this affect you?

Add your gear to cvedb and we'll alert you only when a vendor you run ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.