Описание
Improper link resolution before file access in the Nomad module of the 1E Client, in versions prior to 25.3, enables an attacker with local unprivileged access on a Windows system to delete arbitrary files on the device by exploiting symbolic links.
Improper link resolution before file access in the Nomad module of the 1E Client, in versions prior to 25.3, enables an attacker with local unprivileged access on a Windows system to delete arbitrary files on the device by exploiting symbolic links.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2025-1683
- https://capec.mitre.org/data/definitions/27.html
- https://cwe.mitre.org/data/definitions/59.html
- https://www.1e.com/trust-security-compliance/?ac=0-4
- https://www.1e.com/trust-security-compliance/cve-info
- https://www.teamviewer.com/en/resources/trust-center/security-bulletins/1e-2025-2001
Связанные уязвимости
Improper link resolution before file access in the Nomad module of the 1E Client, in versions prior to 25.3, enables an attacker with local unprivileged access on a Windows system to delete arbitrary files on the device by exploiting symbolic links.
Уязвимость компонента Nomad Module программного обеспечения 1E Client, позволяющая нарушителю удалять произвольные файлы на устройстве