CWE-610
236 CVEs • Abstraction: Class
Externally Controlled Reference to a Resource in Another Sphere
The product uses an externally controlled name or reference that resolves to a resource that is outside of the intended control sphere.
CVEs (236)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
Local privilege escalation during installation due to improper soft link handling. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 40278, Acronis True Image OEM (Windows) bef...Show more |
Local privilege escalation during recovery due to improper soft link handling. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 40173. |
The WireGuard client 0.5.3 on Windows insecurely configures the operating system and firewall such that traffic to a local network that uses non-RFC1918 IP addresses is blocked. This allows an adversary to trick the vict...Show more |
1Phoenixcontact 6Wp 6070 Wvps Firmware Wp 6101 Wxps FirmwareWp 6121 Wxps Firmware+3 moreJun 17, 2026 Aug 9, 2023 N/A· v4 4.3 MEDIUM· v3 N/A· v2 In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote attacker with low privileges is able to gain limited read-access to the device-filesystem through a configuration dialog within the embed...Show more |
1Phoenixcontact 6Wp 6070 Wvps Firmware Wp 6101 Wxps FirmwareWp 6121 Wxps Firmware+3 moreJun 17, 2026 Aug 9, 2023 N/A· v4 4.3 MEDIUM· v3 N/A· v2 In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote attacker with low privileges is able to gain limited read-access to the device-filesystem within the embedded Qt browser.
|
A vulnerability exists in Palo Alto Networks PAN-OS software that enables an authenticated administrator with the privilege to commit a specifically created configuration to read local files and resources from the system...Show more |
Advantech R-SeeNet
versions 2.4.22
allows low-level users to access and load the content of local files.
|
Omni-notes is an open source note-taking application for Android. The Omni-notes Android app had an insufficient path validation vulnerability when displaying the details of a note received through an externally-provided...Show more |
in-toto is a framework to protect supply chain integrity. The in-toto configuration is read from various directories and allows users to configure the behavior of the framework. The files are from directories following t...Show more |
A file disclosure vulnerability in Palo Alto Networks PAN-OS software enables an authenticated read-write administrator with access to the web interface to export local files from the firewall through a race condition.
|
2Fedoraproject Moodle3Extra Packages For Enterprise Linux FedoraMoodleJun 17, 2026 May 2, 2023 N/A· v4 5.3 MEDIUM· v3 N/A· v2 The vulnerability was found Moodle which exists because the application allows a user to control path of the older to create in TinyMCE loaders. A remote user can send a specially crafted HTTP request and create arbitrar...Show more |
3Debian LinuxNetapp8Active Iq Unified Manager Debian LinuxH300s Firmware+5 moreJun 17, 2026 Apr 25, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ib_prctl_set function updates the Thread Information Flags (TIFs) for the task and updates the SPEC_CTRL MSR on...Show more |
In toUriInner of Intent.java, there is a possible way to launch an arbitrary activity due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User intera...Show more |
1Oretnom23 1Student Study Center Desk Management System Jun 17, 2026 Apr 18, 2023 N/A· v4 9.8 CRITICAL· v3 5.0 MEDIUM· v2 A vulnerability has been found in SourceCodester Student Study Center Desk Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file index.php. The manipulat...Show more |
An issue was discovered in Insyde InsydeH2O with kernel 5.2 through 5.5. The Save State register is not checked before use. The IhisiSmm driver does not check the value of a save state register before use. Due to insuffi...Show more |
In multiple functions of MediaSessionRecord.java, there is a possible Intent rebroadcast due to a confused deputy. This could lead to local denial of service or escalation of privilege with no additional execution privil...Show more |
2Fedoraproject Paloaltonetworks2Cortex Xsoar FedoraJun 17, 2026 Feb 8, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A file disclosure vulnerability in the Palo Alto Networks Cortex XSOAR server software enables an authenticated user with access to the web interface to read local files from the server. |
A vulnerability has been identified in Automation License Manager V5 (All versions), Automation License Manager V6 (All versions < V6.0 SP9 Upd4), TeleControl Server Basic V3 (All versions < V3.1.2). The affected compone...Show more |
1Wing Tight Project 1Wing Tight Nov 21, 2024 Jan 5, 2023 N/A· v4 9.8 CRITICAL· v3 6.5 MEDIUM· v2 A vulnerability, which was classified as critical, was found in soshtolsus wing-tight. This affects an unknown part of the file index.php. The manipulation of the argument p leads to file inclusion. It is possible to ini...Show more |
NVIDIA GPU Display Driver for Windows contains a vulnerability in the user mode layer, where an unprivileged regular user can access or modify system files or other files that are critical to the application, which may l...Show more |