CVE-2025-0913 – Apache os File Symlink Creation Vulnerability

June 11, 2025

CVE ID : CVE-2025-0913

Published : June 11, 2025, 6:15 p.m. | 2 hours, 13 minutes ago

Description : os.OpenFile(path, os.O_CREATE|O_EXCL) behaved differently on Unix and Windows systems when the target path was a dangling symlink. On Unix systems, OpenFile with O_CREATE and O_EXCL flags never follows symlinks. On Windows, when the target path was a symlink to a nonexistent location, OpenFile would create a file in that location. OpenFile now always returns an error when the O_CREATE and O_EXCL flags are both set and the target path is a symlink.

Severity: 5.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-0923 – IBM Cognos Analytics Source Code Disclosure Vulnerability

Next Article CVE-2025-6002 – VirtueMart Unrestricted File Upload Vulnerability

Highlights

Microsoft’s June 2025 Patch Tuesday: 2 Zero-Days, 69 Vulnerabilities Patched!

June 10, 2025

Microsoft’s June 2025 Patch Tuesday: 2 Zero-Days, 69 Vulnerabilities Patched!

Microsoft’s June 2025 Patch Tuesday rollout has addressed a substantial 69 vulnerabilities, including 10 critical and 57 important rated issues across Windows and enterprise services. Among these, two …
Read more

Published Date:
Jun 10, 2025 (2 hours, 59 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-47172

CVE-2025-47162

CVE-2025-33073

CVE-2025-33071

CVE-2025-33053

CVE-2025-32710

CVE-2025-29828

CVE-2024-38213

From Data To Decisions: UX Strategies For Real-Time Dashboards

Honeycomb launches AI observability suite for developers

Low-Code vs No-Code Platforms for Node.js: What CTOs Must Know Before Investing

ServiceNow unveils Zurich AI platform

DistroWatch Weekly, Issue 1139

Building personal apps with open source and AI

What Can We Actually Do With corner-shape?

Craft, Clarity, and Care: The Story and Work of Mengchu Yao

Optimizely Mission Control – Part III

Optimizely Mission Control – Part III

Learning from PHP Log to File Example

Online EMI Calculator using PHP – Calculate Loan EMI, Interest, and Amortization Schedule

DistroWatch Weekly, Issue 1139

DistroWatch Weekly, Issue 1139

sudo vs sudo-rs: What You Need to Know About the Rust Takeover of Classic Sudo Command

Dmitry — The Deep Magic

CVE-2025-0913 – Apache os File Symlink Creation Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Demolito is a UCI chess engine

CVE-2024-13451 – Bit Form Contact Form Sensitive Information Exposure

CVE-2025-4071 – PHPGurukul COVID19 Testing Management System SQL Injection Vulnerability

Berserk or Die is a new game published by Poncle, creators of Vampire Survivors

Microsoft’s June 2025 Patch Tuesday: 2 Zero-Days, 69 Vulnerabilities Patched!

How to Set Your Primary Monitor (Without Wanting to Throw Your Mouse)

CVE-2025-7476 – Simple Car Rental System SQL Injection Vulnerability

PBXware is a Linux telephony platform distribution

CVE-2025-0913 – Apache os File Symlink Creation Vulnerability

Related Posts