CVE-2025-23010
published 2025-04-10CVE-2025-23010: An Improper Link Resolution Before File Access ('Link Following') vulnerability in SonicWall NetExtender Windows (32 and 64 bit) client which allows an…
PriorityP432high7.2CVSS 3.1
AVPACLPRLUIRSCCHIHAH
EPSS
0.39%
30.4th percentile
An Improper Link Resolution Before File Access ('Link Following') vulnerability in SonicWall NetExtender Windows (32 and 64 bit) client which allows an attacker to manipulate file paths.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linux | linux_kernel | >= 0 < 6.1.162 | 6.1.162 |
| linux | linux_kernel | >= 6.13.0 < 6.18.7 | 6.18.7 |
| linux | linux_kernel | >= 6.2.0 < 6.6.122 | 6.6.122 |
| linux | linux_kernel | >= 6.7.0 < 6.12.67 | 6.12.67 |
| sonicwall | netextender | — | — |
| sonicwall | netextender | — | — |
CVSS provenance
nvdv3.17.2HIGHCVSS:3.1/AV:P/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
osv7.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
SonicWall
CVE-2025-23010: An Improper Link Resolution Before File Access ('Link Following') vulnerability in SonicWall NetExtender Windows (32 and 64 bit) client which allows a
vendor_sonicwall·2025-04-10·CVSS 7.2
CVE-2025-23010 [HIGH] CWE-59 CVE-2025-23010: An Improper Link Resolution Before File Access ('Link Following') vulnerability in SonicWall NetExtender Windows (32 and 64 bit) client which allows a
CVE-2025-23010: An Improper Link Resolution Before File Access ('Link Following') vulnerability in SonicWall NetExtender Windows (32 and 64 bit) client which allows an attacker to manipulate file paths.
OSV
ipv6: Fix use-after-free in inet6_addr_del().
osv·2026-01-25·CVSS 7.8
CVE-2026-23010 ipv6: Fix use-after-free in inet6_addr_del().
ipv6: Fix use-after-free in inet6_addr_del().
In the Linux kernel, the following vulnerability has been resolved:
ipv6: Fix use-after-free in inet6_addr_del().
syzbot reported use-after-free of inet6_ifaddr in
inet6_addr_del(). [0]
The cited commit accidentally moved ipv6_del_addr() for
mngtmpaddr before reading its ifp->flags for temporary
addresses in inet6_addr_del().
Let's move ipv6_del_addr() down to fix the UAF.
[0]:
BUG: KASAN: slab-use-after-free in inet6_addr_del.constprop.0+0x67a/0x6b0 net/ipv6/addrconf.c:3117
Read of size 4 at addr ffff88807b89c86c by task syz.3.1618/9593
CPU: 0 UID: 0 PID: 9593 Comm: syz.3.1618 Not tainted syzkaller #0 PREEMPT(full)
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
Call Trace:
__dump_stack lib/dum
GHSA
GHSA-f5r8-5xjg-g5f9: An Improper Link Resolution Before File Access ('Link Following') vulnerability in SonicWall NetExtender Windows (32 and 64 bit) client which allows a
ghsa_unreviewed·2025-04-10
CVE-2025-23010 [MEDIUM] CWE-59 GHSA-f5r8-5xjg-g5f9: An Improper Link Resolution Before File Access ('Link Following') vulnerability in SonicWall NetExtender Windows (32 and 64 bit) client which allows a
An Improper Link Resolution Before File Access ('Link Following') vulnerability in SonicWall NetExtender Windows (32 and 64 bit) client which allows an attacker to manipulate file paths.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-04-10
Published