CVE-2025-1683

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Mar 12, 2025

Updated: Mar 13, 2025

CWE ID 59

Summary

CVE-2025-1683 is a vulnerability affecting the Nomad module in 1E Client versions below 25.3. An attacker with local unprivileged access on a Windows system can exploit improper link resolution before file access, leading to the deletion of arbitrary files on the device through symbolic links. This issue poses a risk to data integrity and security. Users are advised to upgrade to the latest version of the 1E Client to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/3tBN6o
https://www.cve.org/CVERecord?id=CVE-2025-1683
https://nvd.nist.gov/vuln/detail/CVE-2025-1683

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners

CVE-2025-1683

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations