CVE-2025-1683 – 1E Client Symbolic Link Deletion Vulnerability

March 12, 2025
7:16 pm

CVE ID : CVE-2025-1683

Published : March 12, 2025, 4:15 p.m. | 2 hours, 40 minutes ago

Description : Improper link resolution before file access in the Nomad module of the 1E Client, in versions prior to 25.3, enables an attacker with local unprivileged access on a Windows system to delete arbitrary files on the device by exploiting symbolic links.

Severity: 7.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-1683 – 1E Client Symbolic Link Deletion Vulnerability

Elvescore.io

Recent Posts

CVE-2025-0114 – Palo Alto Networks PAN-OS GlobalProtect Denial of Service Vulnerability

CVE-2025-0115 – Palo Alto Networks PAN-OS CLI File Disclosure Vulnerability

CVE-2025-0116 – Palo Alto Networks PAN-OS LLDP Frame Denial of Service

CVE-2025-0117 – Pulse Secure GlobalProtect Windows Privilege Escalation Vulnerability

CVE-2025-0118 – Palo Alto Networks GlobalProtect Windows ActiveX RCE

CVE-2025-22870 – Apache Proxy IPv6 Hostname Matching Vulnerability

CVE-2025-1683 – 1E Client Symbolic Link Deletion Vulnerability

CVE-2025-1683 – 1E Client Symbolic Link Deletion Vulnerability