ГлавнаяУязвимости → CVE-2025-1683
7.8высокая

CVE-2025-1683

Описание

Improper link resolution before file access in the Nomad module of the 1E Client, in versions prior to 25.3, enables an attacker with local unprivileged access on a Windows system to delete arbitrary files on the device by exploiting symbolic links.

Затрагиваемое ПО
1e Platform
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://capec.mitre.org/data/definitions/27.htmlhttps://cwe.mitre.org/data/definitions/59.htmlhttps://nvd.nist.gov/vuln/detail/CVE-2025-1683https://www.teamviewer.com/en/resources/trust-center/security-bulletins/1e-2025-2001/