Exposure of Resource to Wrong Sphere

The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.

CVEs (717)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-39349 1Tasks 1Tasks Nov 21, 2024 Oct 25, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 The Tasks.org Android app is an open-source app for to-do lists and reminders. The Tasks.org app uses the activity `ShareLinkActivity.kt` to handle "share" intents coming from other components in the same device and conv...Show more The Tasks.org Android app is an open-source app for to-do lists and reminders. The Tasks.org app uses the activity `ShareLinkActivity.kt` to handle "share" intents coming from other components in the same device and convert them to tasks. Those intents may contain arbitrary file paths as attachments, in which case the files pointed by those paths are copied in the app's external storage directory. Prior to versions 12.7.1 and 13.0.1, those paths were not validated, allowing a malicious or compromised application in the same device to force Tasks.org to copy files from its internal storage to its external storage directory, where they became accessible to any component with permission to read the external storage. This vulnerability can lead to sensitive information disclosure. All information in the user's notes and the app's preferences, including the encrypted credentials of CalDav integrations if enabled, could be accessed by third party applications installed on the same device. This issue was fixed in versions 12.7.1 and 13.0.1. There are no known workarounds.Show less
CVE-2013-4253 1Redhat 1Openshift May 9, 2025 Oct 19, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 The deployment script in the unsupported "OpenShift Extras" set of add-on scripts, in Red Hat Openshift 1, installs a default public key in the root user's authorized_keys file.
CVE-2022-39309 1Thoughtworks 1Gocd Nov 21, 2024 Oct 14, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 GoCD is a continuous delivery server. GoCD helps you automate and streamline the build-test-release cycle for continuous delivery of your product. GoCD versions prior to 21.1.0 leak the symmetric key used to encrypt/decr...Show more GoCD is a continuous delivery server. GoCD helps you automate and streamline the build-test-release cycle for continuous delivery of your product. GoCD versions prior to 21.1.0 leak the symmetric key used to encrypt/decrypt any secure variables/secrets in GoCD configuration to authenticated agents. A malicious/compromised agent may then expose that key from memory, and potentially allow an attacker the ability to decrypt secrets intended for other agents/environments if they also are able to obtain access to encrypted configuration values from the GoCD server. This issue is fixed in GoCD version 21.1.0. There are currently no known workarounds.Show less
CVE-2022-39015 1Sap 1Business Objects Business Intelligence Platform Nov 21, 2024 Oct 11, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Under certain conditions, BOE AdminTools/ BOE SDK allows an attacker to access information which would otherwise be restricted.
CVE-2022-26121 1Fortinet 2Fortianalyzer Fortimanager Nov 21, 2024 Oct 10, 2022 N/A· v4 5.3 MEDIUM· v3 N/A· v2 An exposure of resource to wrong sphere vulnerability [CWE-668] in FortiAnalyzer and FortiManager GUI 7.0.0 through 7.0.3, 6.4.0 through 6.4.8, 6.2.0 through 6.2.9, 6.0.0 through 6.0.11, 5.6.0 through 5.6.11 may allow an...Show more An exposure of resource to wrong sphere vulnerability [CWE-668] in FortiAnalyzer and FortiManager GUI 7.0.0 through 7.0.3, 6.4.0 through 6.4.8, 6.2.0 through 6.2.9, 6.0.0 through 6.0.11, 5.6.0 through 5.6.11 may allow an unauthenticated and remote attacker to access report template images via referencing the name in the URL path.Show less
CVE-2022-39871 1Samsung 1Smartthings Nov 21, 2024 Oct 7, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 Improper access control vulnerability cloudNotificationManager.java in SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via implicit broadcasts.
CVE-2022-39870 1Samsung 1Smartthings Nov 21, 2024 Oct 7, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 Improper access control vulnerability in cloudNotificationManager.java SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via PUSH_MESSAGE_RECEIVED broadcast.
CVE-2022-39869 1Samsung 1Smartthings Nov 21, 2024 Oct 7, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 Improper access control vulnerability in cloudNotificationManager.java SmartThings prior to version 1.7.89.0 allows attackers to access sensitive information via REMOVE_PERSISTENT_BANNER broadcast.
CVE-2020-27601 1Bigbluebutton 1Bigbluebutton Nov 21, 2024 Sep 29, 2022 N/A· v4 3.5 LOW· v3 N/A· v2 In BigBlueButton before 2.2.7, lockSettingsProps.disablePrivateChat does not apply to already opened chats. This occurs in bigbluebutton-html5/imports/ui/components/chat/service.js.
CVE-2022-23950 1Keylime 1Keylime May 27, 2025 Sep 21, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 In Keylime before 6.3.0, Revocation Notifier uses a fixed /tmp path for UNIX domain socket which can allow unprivileged users a method to prohibit keylime operations.
CVE-2022-40234 1Ibm 1Spectrum Protect Plus Nov 21, 2024 Sep 19, 2022 N/A· v4 5.9 MEDIUM· v3 N/A· v2 Versions of IBM Spectrum Protect Plus prior to 10.1.12 (excluding 10.1.12) include the private key information for a certificate inside the generated .crt file when uploading a TLS certificate to IBM Spectrum Protect Plu...Show more Versions of IBM Spectrum Protect Plus prior to 10.1.12 (excluding 10.1.12) include the private key information for a certificate inside the generated .crt file when uploading a TLS certificate to IBM Spectrum Protect Plus. If this generated .crt file is shared, an attacker can obtain the private key information for the uploaded certificate. IBM X-Force ID: 235718.Show less
CVE-2022-34867 1Wp Libre Form Project 1Wp Libre Form Nov 21, 2024 Sep 6, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Unauthenticated Sensitive Information Disclosure vulnerability in WP Libre Form 2 plugin <= 2.0.8 at WordPress allows attackers to list and delete submissions. Affects only versions from 2.0.0 to 2.0.8.
CVE-2022-2403 1Redhat 1Openshift Nov 21, 2024 Sep 1, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A credentials leak was found in the OpenShift Container Platform. The private key for the external cluster certificate was stored incorrectly in the oauth-serving-cert ConfigMaps, and accessible to any authenticated Open...Show more A credentials leak was found in the OpenShift Container Platform. The private key for the external cluster certificate was stored incorrectly in the oauth-serving-cert ConfigMaps, and accessible to any authenticated OpenShift user or service-account. A malicious user could exploit this flaw by reading the oauth-serving-cert ConfigMap in the openshift-config-managed namespace, compromising any web traffic secured using that certificate.Show less
CVE-2022-1902 1Redhat 1Advanced Cluster Security Nov 21, 2024 Sep 1, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 A flaw was found in the Red Hat Advanced Cluster Security for Kubernetes. Notifier secrets were not properly sanitized in the GraphQL API. This flaw allows authenticated ACS users to retrieve Notifiers from the GraphQL A...Show more A flaw was found in the Red Hat Advanced Cluster Security for Kubernetes. Notifier secrets were not properly sanitized in the GraphQL API. This flaw allows authenticated ACS users to retrieve Notifiers from the GraphQL API, revealing secrets that can escalate their privileges.Show less
CVE-2022-0852 2Convert2rhel Project Redhat 2Convert2rhel Enterprise Linux Nov 21, 2024 Aug 29, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 There is a flaw in convert2rhel. convert2rhel passes the Red Hat account password to subscription-manager via the command line, which could allow unauthorized users locally on the machine to view the password via the pro...Show more There is a flaw in convert2rhel. convert2rhel passes the Red Hat account password to subscription-manager via the command line, which could allow unauthorized users locally on the machine to view the password via the process command line via e.g. htop or ps. The specific impact varies upon the privileges of the Red Hat account in question, but it could affect the integrity, availability, and/or data confidentiality of other systems that are administered by that account. This occurs regardless of how the password is supplied to convert2rhel.Show less
CVE-2021-3859 2Netapp Redhat 6Cloud Secure Agent Jboss Enterprise Application PlatformOncommand Insight+3 more Nov 21, 2024 Aug 26, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 A flaw was found in Undertow that tripped the client-side invocation timeout with certain calls made over HTTP2. This flaw allows an attacker to carry out denial of service attacks.
CVE-2022-29850 1Lexmark 117B2236 Firmware B2338 FirmwareB2442 Firmware+114 more Nov 21, 2024 Aug 26, 2022 N/A· v4 8.1 HIGH· v3 N/A· v2 Various Lexmark products through 2022-04-27 allow an attacker who has already compromised an affected Lexmark device to maintain persistence across reboots.
CVE-2022-2610 2Fedoraproject Google 2Chrome Fedora Nov 21, 2024 Aug 12, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Insufficient policy enforcement in Background Fetch in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
CVE-2021-0734 1Google 1Android Nov 21, 2024 Aug 11, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 In Settings, there is a possible way to determine whether an app is installed without query permissions, due to side channel information disclosure. This could lead to local information disclosure of an installed package...Show more In Settings, there is a possible way to determine whether an app is installed without query permissions, due to side channel information disclosure. This could lead to local information disclosure of an installed package, without proper query permissions, with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-189122911Show less
CVE-2022-35936 3Crypto EvmosKava 4Cronos EthermintEvmos+1 more Nov 21, 2024 Aug 5, 2022 N/A· v4 5.3 MEDIUM· v3 N/A· v2 Ethermint is an Ethereum library. In Ethermint running versions before `v0.17.2`, the contract `selfdestruct` invocation permanently removes the corresponding bytecode from the internal database storage. However, due to...Show more Ethermint is an Ethereum library. In Ethermint running versions before `v0.17.2`, the contract `selfdestruct` invocation permanently removes the corresponding bytecode from the internal database storage. However, due to a bug in the `DeleteAccount`function, all contracts that used the identical bytecode (i.e shared the same `CodeHash`) will also stop working once one contract invokes `selfdestruct`, even though the other contracts did not invoke the `selfdestruct` OPCODE. This vulnerability has been patched in Ethermint version v0.18.0. The patch has state machine-breaking changes for applications using Ethermint, so a coordinated upgrade procedure is required. A workaround is available. If a contract is subject to DoS due to this issue, the user can redeploy the same contract, i.e. with identical bytecode, so that the original contract's code is recovered. The new contract deployment restores the `bytecode hash -> bytecode` entry in the internal state.Show less

Previous 1...161718...36 Next